About

The Swiss Web Security Day is a one-day event organized by Switch, the Swiss Internet Security Alliance SISA, and the Swiss ICT Industry Association Swico. It provides insight into current security issues for registrars and hosting providers. You can look forward to talks about current technical, legal, and regulatory issues. The event offers an opportunity to network with security experts as well as new colleagues.

Talks will be given in English, German, and French.

Location

Welle 7

Schanzenstrasse 5

3008 Bern


https://welle7.ch


Agenda

October 29
09:30
Welcome Coffee & Registration
10:00
Welcome by Switch, SISA, Swico

Katja Dörlemann, SISA
Claudius Röllin,
swico
Urs Eppenberger, Switch

10:10
Crypto Investment Fraud

Presentation of the criminal cybertrading industry and the fight against it from the perspective of law enforcement authorities

Marian Rübsamen, Generalstaatsanwaltschaft Bamberg, Zentralstelle Cybercrime Bayern

11:05
Internet-wide deployment of Post Quantum Cryptography for security protocols

Dr. Roland van Rijswijk-Deij

Public key cryptography is the cornerstone of online trust. Unfortunately, public key cryptography is under threat from being broken by powerful quantum computers. Academia and industry have been working hard to create quantum-safe cryptographic algorithms that remain secure even if practical quantum computers become a reality. This "post-quantum cryptography" is a hot topic: the US has standardised the first set of algorithms for use. Large content providers, such as Cloudflare and Google, are experimenting with PQC and rolling it out, and the first browser support has also been deployed. Transitioning the whole Internet to these new cryptographic algorithms, however, is a major undertaking that comes with many challenges. In this talk, Roland will explain the basic need for post-quantum cryptography and will then highlight why the transition to PQC is far from trivial and far from over, and what challenges this will bring in the coming years.

12:00
Lunch
13:00
Malware on legit websites - the situation in 2024

You're visiting your preferred restaurant's website to see what is on the menu today, and suddenly you're told to update your browser... No need to click on this "Update Now" button to find out what would happen - we will provide you an overview of the actors infecting legit sites and their lures leading to malware.

Alexandre representing the Threatcat team

http://threatcat.ch

13:25
DNS Abuse Mitigation Strategies: Ensuring a Secure Online Environment

This presentation explores the best practices and strategies for combating online harm with the focus on DNS abuse mitigation. We examine the challenges of mitigating DNS abuse when working with responsible entities and highlight the importance of effective actions to reduce online harm. A case study on one of the largest ongoing phishing campaigns is also presented to illustrate these efforts.

Dr. Sourena Maroofi

13:50
Code of Conduct: Mehr Rechtssicherheit dank neuem Gerichtsurteil (Vortrag auf Deutsch)

Seit über 10 Jahren bewährt sich der vom Verband Swico initiierte Code of Conduct für Hosting-Provider und Domain-Registrare als hilfreiches Werkzeug bei der Klärung und Behandlung von Beschwerden Dritter betreffend angeblich unzulässige Inhalte oder Domain-Registrierungen. Ein neues Urteil des Bezirksgerichts Visp ist wegweisend für die Branche und trägt damit zur Rechtssicherheit bei.

David Burkardt, cyon
Jonas Gassmann, VISCHER

14:15
Coffee & Networking
14:45
NIS2 and Implications for Service Providers in Switzerland and Liechtenstein

Thomas Rickert, eco, rickert.law

15:45
Closing remarks & takeaways

Urs Eppenberger

16:00
Icebreaker

Networking & Conversation

16:30
Apéro