ITU's 160 anniversary

Committed to connecting the world

DFS Security Clinic - Lesotho

​​​​​​​Banner​​​​​​ ​​

The International Telecommunication Union (ITU), together with Lesotho Communications Authority (​LCA) and Central Bank of Lesotho (CBL​), is organizing the DFS Security Clinic - ​​Lesotho​ taking place on 5 - 6 September 2024 from 10:00 - 12:30 SAST, which will be held online via Zoom. ​

The Security Clinic will provide in-depth sessions on the ITU DFS Security recommendations and the ITU DFS security lab activities.

Objectives

Target audience


Register here​



Draft Programme


​Day 1:  05​ September 2024 (SAST)​
​​​​10:00 - 10:10
​Welcome and opening remarks
​10:10 - 11:10
Introduction to ITU DFS Security Lab and Knowledge Sharing Platform ​

This session will provide a general overview of the ITU DFS Security  Lab and the assistance that it provides to developing countries to adopt the DFS Security recommendations. This session will also introduce the ITU knowledge sharing platform. The ITU DFS Security Knowledge Sharing Platform is designed to foster collaboration among regulators and other stakeholders in the development and implementation of security guidelines and best practices for Digital Financial Services (DFS).
​11:10 - 11:20
Coffee Break
​11:20 - 12:30 
​ITU DFS Security Recommendations

This session will present the security measures from the ITU DFS security recommendations to be adopted by DFS regulators and providers to secure the telecom infrastructure and payment system infrastructure. In particular, the following recommendations will be presented:​

Day 2: 06 September 2024 (SAST)

10:00 - 11:00
​DFS Security Assurance Framework 

This session will discuss the DFS security assurance framework that can be implemented by DFS providers to better manage the risks and mitigate their impact.

Related Reports:
Vijay Mauree, Programme Coordinator, TSB, ITU 
​11:00 - 11:10
Coffee Break
11:10 - 12:00​ DFS Application Security Best Practices and DFS Application Security Testing 

Following up on the ITU DFS security recommendations on Day 1, this session continues the elaboration of the security control measures to the application layer. As DFS cyber threats continue to evolve, protecting applications from vulnerabilities becomes paramount. The DFS application security best practices included in the ITU DFS security recommendations can be adopted by regulators to establish a minimum-security baseline for DFS providers to build in security at the design phase. This session will explore the security tests that are conducted in the ITU DFS security lab to verify compliance of mobile payment apps against the Security best practices. ​
​12:00 - 12:15
How to Join and Use the ITU DFS Knowledge Sharing Platform

This session will introduce the ITU DFS knowledge sharing platform and how to join and use the platform.