Successful EL/WLA Security and Integrity Seminar 2019

President and CEO of hosting Loterija Slovenije Romana Dernovsek (right) opened this year’s Seminar focusing on the theme ‘Protect Your Digital Ecosystem and It Will Protect You’. The tone of the Seminar was set by Carlos Bachmaier, SELAE and Executive Chair of the EL Security and Integrity Working Group, who reemphasised the importance of compliance in the area of security and integrity.

 

 

Keynote speaker Eneken Tikk

Keynote speaker Eneken Tikk of the Cyber Policy Institute in Finland highlighted the growth in cyber threats and called on lotteries to self-reflect on how their services would be perceived and treated by their respective governments in case of a cyber-attack – as critical/essential or rather a luxury. A question was raised about whether lottery services can be considered as luxury services from the point of view of critical infrastructure or they become essential/critical due to the nature of flagship organisations of their governments. The final message was that strict adherence to GDPR is the best way for a lottery company to “protect its back”.

EL Deputy Secretary General Jutta Buyse took to the floor to highlight the importance of lotteries’ participation in and contribution to the work of developing a Reporting Standard in Support of online Gambling Supervision (CEN/TC 456). This is a process in which EL as an organisation and many of its member lotteries have participated from the beginning and which is now coming to an end.

Peter Szyszko, CEO of White Bullet Solutions drew the attention of the participants to the dangers of their brands ending up being shown as ads on illegal sites. He explained how this happened and advised how to monitor and track such developments.

The China Sports Lottery presented its approach to security management and Carlos Bachmaier, Jochen Haller (Head of Info Security, 1&1 Ionos Internet SE) and Mariano Benito (CISO, GMV, Spain) alerted participants to the challenges of the inexorable and inevitable move to the Cloud where data classification was one of the biggest issues for users as was the difficulty in having the increasingly powerful Cloud Service Providers pay any attention to or respond to the needs of “small” users such as State Lotteries.

Abhishek Kumbhat (Skilrock) rounded off the last day with a presentation on Threat Intelligence and Resilience in New-Age lottery. Abhishek highlighted recent cybercrime techniques threats and proposed methods for protecting lottery systems.

On day two of the Seminar Matthias Rieger (Lotto Rheinland-Pfalz) presented Gunnar Ewald’s review of 2019 security incidents, and a short discission took place on the security implications of the recently reported news concerning the long story of the Camelot £2.5m Lotto ticket fraud. Ticket security was discussed (remotely) by Franz-Josef Wichmann, Head of Internal Audit Westdeutsche Lotterie who explained the features of Scientific Games Xisecure (which is similar to IGT’s GGuard). There were many advantages in having a ticket security system which was completely separate and independent of the lottery central systems and data bases. Franz-Josef strongly urged that all “last minute” claims for winning tickets receive special security attention. Presentations were also given by Dr Aftab Rizvi of Gaming Associates (a WLA SRMC Certified Auditor) and Dr Helena Szrek of Szrek2Solutions (Integrity of RNG draw systems).

Partner sessions rounded off the Seminar with Steve Townend (Scientific Games) explaining the security implications of splitting a single instant game between online and retail distribution channels and Panagiotis Merkouris (Intralot) presented an Integrated Security Program for Personal Data Protection proposing how personal data can be made less vulnerable to a wide and complex range of security exposures.

Next year Seminar is planned to take place in Reykjavik, Iceland hosted by Íslensk Getspá.

The standout quote from the Seminar was “The weakest link in the security chain is the human element” attributed to Kevin Mitnick (Convicted Hacker in US)

By Ray Bates, Moderator

Related Articles

View all

Synopsis

Français

« Protégez votre écosystème numérique et il vous protégera »

Cette année, Loterija Slovenije a accueilli le séminaire EL/WLA sur la sécurité et l’intégrité. Le conférencier principal Eneken Tikk (Cyber Policy Institute, Finlande) a mis en évidence la croissance des cybermenaces et a demandé aux loteries de réfléchir à la manière dont leurs services seraient perçus et traités par leurs gouvernements respectifs en cas de cyberattaque.

Le Secrétaire général adjoint d’EL a souligné l’importance de la participation des loteries et de leur contribution au travail de développement d’une Norme de signalement en soutien à la surveillance en ligne des jeux (CEN) et le PDG de White Bullet Solutions a examiné les dangers des marques qui sont présentées comme des publicités sur des sites illégaux. D’autres sujets comprenaient la gestion de la sécurité, la classification du cloud et des données et les incidents de sécurité en 2019.

Les rencontres entre partenaires ont examiné, l’intelligence des menaces et la résilience dans une loterie d’une nouvelle ère ; les menaces techniques de cybercriminalité et les méthodes proposées pour la protection des systèmes de loterie ; les implications en matière de sécurité consistant à diviser un jeu instantané unique entre les canaux de distribution en ligne et au détail ; et une proposition sur la manière dont les données à caractère personnel peuvent être moins vulnérables face à une large et complexe gamme de risques de sécurité.

Español

«Proteja su ecosistema digital y este le protegerá»

Loterija Slovenije organizó el seminario sobre seguridad e integridad de EL/WLA de este año. La ponente de apertura del seminario Eneken Tikk, del Cyber Policy Institute (Instituto de Política Cibernética) en Finlandia, destacó el crecimiento de las amenazas cibernéticas e invitó al sector de las loterías a reflexionar sobre cómo sus servicios serían percibidos y tratados por sus respectivos gobiernos en caso de ciberataque.

La subsecretaria general de EL subrayó la importancia de la participación y la contribución de las loterías en el desarrollo de una norma de notificación en apoyo del programa de supervisión de apuestas en línea (Comité Europeo de Normalización, CEN), y el director general de White Bullet Solutions examinó los peligros de las marcas que se anuncian en sitios ilegales. Otros temas incluyeron la gestión de la seguridad, la clasificación de la nube y de los datos, y los incidentes de seguridad en 2019.

Las sesiones de socios analizaron la inteligencia y la resistencia de los riesgos en la lotería de nueva generación; las amenazas de la técnica de delitos cibernéticos y los métodos propuestos para proteger los sistemas de lotería; las implicaciones de seguridad de dividir un único juego en línea entre canales de distribución minoristas y digitales; y una propuesta sobre cómo los datos personales pueden ser menos vulnerables frente a una amplia y compleja gama de riesgos de seguridad.

Deutsch

„Schützen Sie Ihr digitales Ökosystem, damit es Sie schützt“

Loterija Slovenije hat das diesjährige EL/WLA-Seminar für Sicherheit und Integrität ausgerichtet. Keynote-Referent Eneken Tikk (Cyber Policy Institute, Finnland) betonte das Wachstum von Cyber-Bedrohungen und rief Lotterien dazu auf, selbst zu reflektieren, wie ihre Dienstleistungen bei einem Cyber-Angriff wahrgenommen und von ihren zuständigen Regierungen unterstützt werden.

Der Stellvertretende Generalsekretär der EL hat die Bedeutung der Beteiligung von Lotterien und deren Mitwirkung an der Entwicklung eines Berichtsstandards für eine Online-Gambling Supervision (CEN) hervorgehoben, während der CEO von White Bullet Solutions die Gefahren von Adds mit Markennamen auf illegalen Seiten betonte. Andere Themen umfassten das Sicherheitsmanagement, die Cloud- und Datenklassifizierung sowie Sicherheitsvorfälle 2019.

Partnersitzungen befassten sich mit der Bedrohung und Belastbarkeit neuzeitlicher Lotterien, der Bedrohung durch Internet-Kriminalität und neuen Methoden zum Schutz von Lotteriesystemen, Sicherheitsauswirkungen bei Aufteilung eines einzelnen Instant-Spiels auf mehrere Online- und Einzelhandelsvertriebskanäle sowie mit einem Vorschlag, wie personenbezogene Daten nachhaltig vor einer breiten und komplexen Palette von Sicherheitsrisiken geschützt werden können.

Other Articles

View all

INTRALOT | The challenge of privacy and security in a modern gaming world

THE INCREASING SIGNIFICANCE OF PERSONAL DATA PROTECTION In our heavily-loaded-information era, global players deal with a large amount of information in their daily lives; they produce, process and s......

Read more Synopsis: fr / es / de

Lotteries and COVID-19: From tactical to strategic continuity

As the COVID-19 outbreak continues to have a dramatic impact worldwide, EL has produced an overview of operational continuity elements that could be – and many of them already are – implemented by individual lotteries to enhance their capability of an effective response....

Read more Synopsis: fr / es / de

“Reflecting on 11 years at the European Lotteries’’ | An interview with former EL Deputy Secretary General Jutta Buyse

Since 2016 Jutta Buyse was the Deputy Secretary General of EL and represented the Association in the Brussels office since 2009. During this time, Jutta led the public affairs for EL and experienced historic moments for the Association at European level....

Read more Synopsis: fr / es / de

Introduction to the new General Manager of Loteria Romana

Since 10 January 2020 Sebastian – Iacob Moga is the new General Manager of the C.N.  "Loteria Română" S.A., being appointed to this position by the Board of Administrators....

Read more Synopsis: fr / es / de

EL Report on the Lottery Sector in Europe

Every year EL members provide an overview of how they work and demonstrate the importance of lotteries for the benefit of society....

Read more Synopsis: fr / es / de

A partnership for society: EL and ENGSO commit to enhancing the role of grassroots sport in 2020–2021

EL and ENGSO, the European Sports NGO are further extending their partnership with a new two-year agreement (2020-21)....

Read more Synopsis: fr / es / de

Scientific Games | Data in Motion Reimagines Play

C-stores and supermarkets are modernizing to attract consumers who have come to expect more conveniences. The lottery category has the opportunity to create better experiences for players and efficiencies for retailers....

Read more Synopsis: fr / es / de

IGT | Lottomatica: Boosting Support for Women in the Workplace

Italian operator Lottomatica uses a range of programmes and tools to promote gender balance and offer personal and professional support for female employees....

Read more Synopsis: fr / es / de

100 days of the von der Leyen Commission

March 2020 marked 100 days since the current College of the European Commission took office. Commission President Ursula von der Leyen looked back at the achievements, but also ahead at the expected next steps in line with the agenda outlined in her Political Guidelines back in July last year. This agenda was in the meantime hit hard the last weeks by the rapid spread of COVID-19....

Read more Synopsis: fr / es / de