EL/WLA joint Security and Integrity seminar 2018

2 – 4 October 2018  Budapest, Hungary

More than 90 participants from 36 countries participated in the Seminar where the keynote address was delivered by Dr. Katalin Szenens, an independent IT security advisor who outlined the complexities in the world of IT security today and showed how clear parallels could be drawn between the IT needs of the financial sector and those of the lottery industry.

Spanish “white-hat” hacker Roman Ramirez of Patowc and Rootedcon, Spain, presented the building blocks of cyber security and cyber vulnerabilities. He demonstrated how hackers can identify and physically track an individual by exploiting vulnerabilities in WIFI.  Further examples of common cyber-attacks were provided by David Boda, Camelot UK. David showed how java script can be manipulated on lottery websites to target valuable player information. This common problem can be avoided by introducing a simple piece of code, known as a Content Security Policy, into the html of the lottery website. David reported that, based on a recent survey, lotteries invest on average only about 8.7% of their IT budget on cyber security.

Carlos Bachmeier, EL SIWG Executive Chair and WLA SRMC Chairman, provided the now traditional report on security incidents that have occurred over the past year – prepared by Gunnar Ewald from LOTTO Hamburg. Notable were the number of retailer fraud cases and cases involving social engineering.

Krisztián Pállai, Head of Security for Szerencsejáték Zrt., raised the importance of employee sensitization to IT security. He presented SnapComms a tool that can be used to heighten security awareness. The tool sends vital security message to employees through the use of tickers, pop up messages and security themed screen savers.  Hugo Hirsh,  Kambi, UK, postulated that in an environment where criminals can act with impunity, crime will flourish. Therefore there is a need to proactively build a “zero-tolerance” front against cybercrime and use threat modelling as an effective response.   Matthias Oehler,  FDJ, discussed  the growing role of data governance as a line of defense in the fight against cybercrime.  The essential elements of good data governance include data and strategy ownership, data control and security, and culture and change management.

Christian Hohenegger, of Scientific Games, Austria, spoke about implementing systems to respond to the requirements of GDPR and suggested that we may see the introduction of security ratings, much like credit rating, for organizations that deal with personal data.    Dragan Pleskonjic, IGT, addressed application security. With the fast pace of release cycles; the pressure for delivery deadlines, and the increasing use of open-source and third-party software it is becoming increasingly difficult for developers to ensure adequate application security. Code must now be written from the very beginning with security in mind.  Ioannis Vittas, Information Risk Manager at INTRALOT, Greece, discussed the challenges that we face in the cyber landscape globally on a day-to-day basis. Each day, there are around 4000 ransom-ware attacks. Of those, 36% target the gaming industry. The average cost of a data breach according to Ioannis is $3.62 million and it is predicted that the cost of cybercrime will go as high as $6 trillion by 2021.

Juan Carlos Díaz, Cybersecurity Director at PWC Business Security Solutions, Spain, discussed AI, its pros and cons, and how it is being implemented in cognitive security. Through face, object, and voice recognition, AI is progressively being used in surveillance and its potential use in combating cyberattack is enormous.  Juan Carlos stated that 79% of all security experts think that AI is the future of cyber security.

Thomas Bierbach, Bulletproof GLI LLC, Canada,  and Nuno de Sousa Pereira, Szrek2Solutions, USA, presented the security and integrity risks in Electronic Drawing Systems which are comprised of the RNG,  the Automated Drawing Machine, the people involved, and the environment. An RGN is vulnerable to either direct attacks or attacks to the game perimeter. Certifying your RGN does not address any of these security risks; it merely addresses the randomness of the draw. Presenting the risk profile of electronic draw fraud, Thomas pointed out that it is not a crime of opportunity; rather it is a highly complex exploit that requires insider knowledge. Thomas also discussed the importance of non-repudiation in the context of a RNG. Nuno emphasized its potential for streamlining the draw process and the cost saving advantages that come with it.

Christophe Ciglic, IDEMIA Identity & Security, France, presented IDEMIA’s augmented player identification system. He spoke of the challenges that lottery and betting operators face, with the constraints that regulatory compliance poses and the large omni-channel eco-systems that are common today. Digital ID systems are the best way to manage these challenges as they are convenient for lotteries, retailers, and players alike.  Vanessa Leemans, Aon Cyber Solutions EMEA, UK discussed cyber resilience through proper cyber security and cyber risk management and the increasing need for cyber insurance. With the rising incidence of cyber extortion, privacy breach, and the business interruptions that these cause, adopting a risk-based cyber insurance strategy is becoming increasingly vital.

In his presentation entitled Cybersecurity at the Speed of Digital Businesses, Abhishek Kumbhat, Head of Technology & Innovation at Skilrock Technologies, India, spoke on the state of IT security in many organizations today. Security is often an afterthought; reactive instead of proactive and is considered a hindrance to productivity by many in the organization.

Paul Peinado, WLA and  Ray Bates, EL Honorary President, Moderator

Related Articles

View all

Synopsis

Français

Séminaire commun EL/WLA sur la sécurité et l’intégrité – organisé par Szerencsejáték Zrt.

Plus de 90 participants de 36 pays ont participé au séminaire, durant lequel le discours d’ouverture a été prononcé par la docteure Katalin Szenens, conseillère indépendante en sécurité informatique, qui a présenté les complexités actuelles du monde de la sécurité informatique, et a montré qu’il était possible d’établir un parallèle entre les besoins informatiques du secteur financier et ceux du secteur des loteries.

Español

Seminario conjunto de EL/WLA sobre seguridad e integridad, organizado por Szerencsejáték Zrt.

Más de 90 participantes de 36 países participaron en este seminario, cuyo discurso inaugural fue impartido por la Dra. Katalin Szenens, una asesora independiente de seguridad informática que describió las complejidades existentes en el mundo de la seguridad informática hoy día y demostró cómo se pueden hacer paralelismos muy claros entre las necesidades informáticas del sector financiero y los de la industria de las loterías.

Deutsch

EL/WLA-Sicherheits- und Integritätsseminar – ausgetragen von Szerencsejáték Zrt.

Mehr als 90 Teilnehmer aus 36 Ländern nahmen am gemeinsam von EL und WLA ausgetragenen Seminar teil. Die Keynote-Rede hielt Dr. Katalin Szenens, ein unabhängiger IT-Sicherheitsberater, der die Anwesenden über die aktuellen Schwierigkeiten der IT-Sicherheit aufklärte und in Sachen IT-Sicherheit Parallelen zwischen dem Finanzsektor und der Lotteriebranche zog.

Other Articles

View all

EL elects new Executive Committee & adopts Antwerp Resolution

Hansjörg Höltkemeier re-elected as EL President for the period 2019-2021 Re-elected EL President Hansjörg Höltkemeier (right) said, ‘‘We have had three fantastic days at the special 10th edi......

Read more Synopsis: fr / es / de

EL publishes first-ever Annual Report

Looking back at a successful 2018, EL has presented its first ever Annual Report. The Annual Report provides an overview of activities from the past year, which would not have been achieved without the ongoing support of EL members. By continuing to provide best practices, content and enthusiasm, they pave the way for the work of the Association....

Read more Synopsis: fr / es / de

EL’s Responsible Gaming Certification continues to reap benefits for members

Peter Simoner, CEO of Loteria Kombetare received his Commitment certificate from EL President Hansjörg Höltkemeier Benefits of the Commitment Level Loteria Kombëtare in Albania was the first-eve......

Read more Synopsis: fr / es / de

European Standard on reporting in support of online gambling supervision notes considerable progress

On 12 and 13 September the CEN Working Group drafting the Standard held its two-day meeting in Brussels. The Standard is expected to be put for public comment and a vote by the end of November 2019....

Read more Synopsis: fr / es / de

European Commission Sport Unit Breakfast welcomes EL

At the fourth European Commission Sport Unit Breakfast EL was invited to present how lotteries are supporting and using sport. EL President Hansjörg Höltkemeier highlighted the importance of promoting the values of sport and the sustainable financing from national lotteries....

Read more Synopsis: fr / es / de

New appointments for EL members

From left to right: Kerstin Kosanke, Managing Director, Lotto Brandenburg, Alexandru-Mircea Croitoru, General Manager, Loteria Romania, Bekir Yunus Uçar, General Director, Turkish National Lottery Administration & Gábor Czepek, CEO, Hungarian National Lottery...

Read more

10th EL Congress – Lotteries, democracy and the European political landscape

Brett Henning  Brett Henning, Co-founder and Director at Sortition Foundation analysed the results of the elections, looking closely at the rise in European populism. In the past months and years,......

Read more Synopsis: fr / es / de

IGT | Sustainability Strengthens the Social Contract

IGT recently released its 12th annual IGT Sustainability Report, “Ahead of the Game,” an externally audited document that validates IGT’s sustainability activities and data. The report highligh......

Read more Synopsis: fr / es / de

Scientific Games | Investing in growth with instant games

The global lottery industry faces new challenges from changing consumer and retail behaviours. Along with regulations and policy decisions, these changes place competitive and margin pressure on lotte......

Read more Synopsis: fr / es / de

EL Congress Antwerp – Day 1: The Corporate Success of Chance

The Black Swan with keynote speaker: Mr. Nassim Nicholas Taleb  International bestselling author Nassim Nicholas Taleb focused his keynote presentation on the Black Swan, his book which looks at th......

Read more Synopsis: fr / es / de

INTRALOT | Trends and technologies that modernise the Lottery Industry

As it was stated during the 10th EL Congress in the CEO Panel discussion by Maria Stergiou, Group Chief Sales and Operations Officer of INTRALOT, all the above technological trends are creating sever......

Read more Synopsis: fr / es / de

EL Congress Antwerp – Day 2: Give Chance a Chance

Talent Vs Luck After a lively performance by mentalist Gili, three inspiring keynote speakers highlighted the role of randomness in success and failure, bringing with them their own personal expertis......

Read more Synopsis: fr / es / de

Call for global action as Macolin Convention enters into force

The Convention entered into force thanks to its ratification by Italy, Moldova, Norway, Portugal, Switzerland and Ukraine. Another 32 countries, including Australia, have also signed it. Within 12 mon......

Read more Synopsis: fr / es / de

New Managing Director at Germany’s Lotto Brandenburg

Kerstin Kosanke, Managing Director of Land Brandenburg Lotto GmbH After finishing her law studies in Potsdam, Ms. Kosanke worked for 15 years as an independent lawyer with a focus on tax law and man......

Read more Synopsis: fr / es / de

Loteria Romania appoints new General Manager

Honoured in his new role Alexandru-Mircea Croitoru as General Manager, he will continue to work on the implementation of projects that will drive the development of the lottery. The Romanian Lottery is one of the oldest institutions in the country, established in 1906 in order to improve the health system, especially in rural areas....

Read more Synopsis: fr / es / de

Interview with Gábor Czepek, new CEO of the Hungarian National Lottery

Gábor Czepek, CEO, Hungarian National Lottery Szerencsejáték Zrt. is one of Hungary’s largest, dynamically developing state-owned enterprises: What were the most pressing tasks in this initial......

Read more Synopsis: fr / es / de

Introduction to new General Director at the Turkish National Lottery Administration

Following a career in journalism, Bekir Yunus Uçar spent over 20 years in public service. He worked in several roles at Türk Telekom before joining the Turkish National Lottery Administration. He was appointed General Director by the Minister of Treasury and Finance....

Read more Synopsis: fr / es / de

Chance is a part of Lotteries. Chance is a part of Success. Chance is also a part of Life.

Hansjörg Höltkemeier, EL President & Jannie Haek, CEO of the National Lottery Belgium open the Trade Show at the 10th EL Congress in Antwerp ‘‘The Success of Chance’’ was the theme for......

Read more Synopsis: fr / es / de