ANTIC POLICY FRAMEWORK
1.1 ANTIC at a Glance
Chapter 11 Section 7 (regulation and monitoring of electronic security activities) of Law №. 2010/012 of 21 Dec 2010 relating to cybersecurity and cyber criminality in Cameroon states that, The National Agency for Information and Communication Technologies (ANTIC), instituted by the Law governing electronic communications in Cameroon, is responsible for the regulation of electronic security activities in collaboration with the Telecommunications Regulatory Board (TRB).
In 2011, Antic became a member of the ITU-IMPACT, an international multilateral partnership against cyber threats that offers high-level training programmes to help partner countries (Cameroon) to fight and prevent the scourge.
According to the law stated above and the Cameroon Cyberwellness Profile (United Nations Statistics Division, December 2012), ANTIC is officially recognized as the national (and sector specific) cybersecurity framework including cybersecurity strategy, policy and roadmap for implementing internationally recognized cybersecurity standards for government agencies. ANTIC is responsible for the regulation, control and monitoring of activities related to the security of electronic communication networks, information systems, and electronic certification on behalf of the State (Chapter 11 Section 7: pg. 7-8 of Law №. 2010/012 of 21 Dec 2010 relating to cybersecurity and cyber criminality in Cameroon) . It has as missions to:
  1. Examine applications for accreditation and prepare the specifications of Certification Authorities and submit them to the Minister in charge of telecommunications for Signature.
  2. Control the compliance of electronic signatures issued.
  3. Participate in the development of the national policy on the security of electronic communication networks and certification
  4. Give an advisory opinion on instruments that fall under its area of competence;
  5. Control activities aimed at ensuring the security of electronic communication networks, certification and information systems;
  6. Examine applications for the certification of cryptographic means and issue certificates of homologation for security equipment;
  7.  Prepare agreements of mutual. recognition with foreign parties and submit them to the Minister in charge of Telecommunication for signature
  8. Monitor technological developments and issue warnings and recommendations regarding the security of electronic communication networks and certification ;
  9.  Participate in research, training and studies related to the security of electronic communication networks, certification and information systems;
  10. Ensure the regularity and efficiency of security audits of information systems in accordance with established standards, public bodies and Certification Authorities
  11.  Monitor, detect and provide information on computer-related risks and cybercriminal activities;
  12. Carry out any other mission of general interest assigned to it by the supervisory authority.
  13. Manage the Internet resources: CM » Domain Names, IP Addresses in Cameroon (Law N°2010/013 relating to Electronic Communication in Cameroon and Decree N° 2013/0402/PM)
According to the white paper from ANTIC on the legal, technical and organizational measures discussed during the 2013 cybersecurity forum (CTO 2013), a formal framework for the fight against cybercrime involving all cybersecurity actors (SED, DGSN, DGRE, MINPOSTEL, ANTIC, ART) was established. Some of these measures include:
  1. Elaborating on a National Information Security Policy
  2. Reinforcing the cybersecurity legal framework
  3. Sensitizing and promoting the teaching of cybersecurity related courses in universities
  4. Building partnerships with some organizations (Yahoo, Google, FIRST, INTERPOL)
  5. Elaboration of standards related to cybersecurity(charter, procedure, policy)
  6. Promoting the development of local expertise in the cybersecurity
  7. Setting up a national PKI (Public Key Infrastructure)
  8. Conducting security audits nationwide amongst others.
1.2 ANTIC Action Plans
  As a public body responsible for the regulation of electronic security activities, ANTIC has in place a number of action plans in order to bar the way to the cybersecurity scourge in Cameroon  (source: http://www.antic.cm/index.php/cybersecurite/9-securite/244-regulation-des-activites-de-securite-electronique-au-cameroun--lantic-a-luvre)by controlling and monitoring tool Internet as follows:
  1. Establishment of an Internet regulation framework to help develop the legal and technical means that will promote the harmonious and efficient development of the Internet.
  2. Development of the activity of the security audit of information systems of public and private organizations to help maintain information systems to an acceptable level of security and deter cybercriminals constantly.
  3. Development of the activity of the security intelligence and response to cyber incidents; establishment of a Computer Emergency Response Team (CERT) to help undertake proactive and remedial actions related to computer security.
  4. Development of the activity of electronic certification; establishment of a public key infrastructure (PKI) that will allow and offer Internet users the same security (confidentiality, integrity, authentication and non-repudiation of transactions) to which they are entitled in the ordinary world.
  5. The Agency has organs like the Computer Incident Response Team, Public Key Infrastructure Centre, and the Department of Audit Security.
 
© 2015-2024 Essoka Cybersecurity Division (ECSD), A Postindustrial Entity of Essoka Corporation , - A BTH Education Group International Corporation Development (ICD)  Protégé.
2024 C4A Affiliates:
Standardization of Digital Literacy 2024 - Information Security Literacy for Africa 2024  - Cyber4Africa Technocracy Program.