The highly anticipated ETSI Security Conference has concluded after three and a half days of in-depth discussions on a broad range of cybersecurity standardization topics. The event drew 195 attendees in person, who enjoyed a series of insightful presentations and lively networking sessions during both scheduled breaks and evening social events hosted by ETSI.

Day one revisited a recurring topic from previous years, focusing on international developments in cybersecurity. In his keynote on AI security, Rob van der Veer highlighted the ongoing global conversation, drawing attention to critical gaps and challenges that still need to be addressed by standards-developing organizations. Allan Friedman from the U.S. Cybersecurity and Infrastructure Security Agency introduced the concept of the Software Bill of Materials (SBOM), underscoring its importance as a fundamental tool in identifying vulnerabilities within software supply chains.

Other notable highlights from day one included early discussions on the impact of regulation, securing AI, and the challenges surrounding the rollout of EU digital wallets by 2028.

Day two delved into fraud prevention, 5G security, and digital payments, featuring keynotes from David Rogers, GSMA FASG Chair, on legacy migration and the 'Janus problem,' and Galina Pildush from Palo Alto Networks on the importance of protecting children from impersonation and online threats. The day's sessions also examined the societal impact of technology, particularly the need to safeguard vulnerable individuals from coercive control, abuse, and disinformation.

A session on the use of IoT in consumer goods and services sparked lively discussion on the necessity of embedding cybersecurity into devices before they enter the supply chain. The legal and regulatory implications of this were explored in detail, with a focus on how standards and legislation can influence manufacturers.

On the third day, the focus shifted to Quantum Safe Cryptography and the ongoing race to stay ahead of quantum criminals. A keynote by Dustin Moody from NIST, complete with a live laser demonstration of quantum wave principles, captivated the audience. The day concluded with a panel debate on what constitutes "reasonable cybersecurity" and a session tackling the transition from 5G to 6G, exploring both the challenges and opportunities from a security standpoint.

The final day of the conference looked critically at the successes and shortcomings of current regulations and standardization in securing technology, covering a range of sectors from smartphones and IoT to public safety and critical communications.

In closing, Alex Leadbeater, on behalf of the Programme Committee, reflected on the week’s key themes, including gaps in standards, future priorities, managing legacy systems, and addressing next-generation threats. He emphasized that the discussions held during the conference will serve as a vital catalyst for continued dialogue in the security community, helping to shape ETSI’s standardization priorities for future cyber-secure networks.

The ETSI Security Conference has once again proven to be a crucial platform for advancing cybersecurity standardization and fostering collaboration across the global security community.