On Wednesday, November 27th, NBIP will be organizing NBIP NEXT for the third time. This year, the event will take place at Kasteel De Hooge Vuursche, near Hilversum and Baarn. Click here for the program and to register.
The morning is reserved for NBIP participants, featuring an update from NBIP and the annual participants’ meeting. This part of NBIP NEXT is only accessible to NBIP participants.
Participants’ Meeting
9:30 – Reception with coffee and tea
10:00 – NBIP Update 2024-2025
11:00 – Participants’ Meeting
12:00 – Networking lunch with other NBIP NEXT visitors
From 11:30, registration begins for visitors to the afternoon program. At 12:00, lunch starts for all visitors. The afternoon is divided into two parallel tracks:
The preliminary program can be viewed below.
| Time | Track 1: Laws and Regulations in Practice | Track 2: DDoS Mitigation (English) |
|---|---|---|
| 11:30 – 13:00 | Walk-in & registration | Walk-in & registration |
| 12:00 – 13:00 | Networking lunch | Networking lunch |
| 13:00 | Octavia de Weerdt (General Director NBIP) Plenary opening & 10th anniversary of NaWas | Octavia de Weerdt (General Director NBIP) Plenary opening |
| 13:30 | Bibi van Alphen (Legal Advisor Freedom Internet) Internet blocks: (sometimes) proportional or undesirable censorship? | Jair Santanna (Principal Researcher Northwave Cybersecurity) Revisiting a decade of DDoS attacks |
| 14:15 | Esther Paalman, senior policy advisor Ministry of Economic Affairs Duty of Care Cybersecurity Act | Johan Lamprecht (Security Engineer NBIP NaWas) Trends & lessons learned from the day-to-day business of DDoS mitigation at NaWas |
| 15:00 | Coffee break | Coffee break |
| 15:30 | Arda Gerkens (Chairman of the Board ATKM) The how, what & why of ATKM (Authority for Online Terrorist and Child Pornography Material) and what providers notice from this | Mattijs Jonker (Assistant Professor Twente University) An Empirical Comparison of Industry and Academic DDoS Assessments |
| 16:15 | Matthijs van Amelsfort, Director NCSC-NL About the reporting obligation & voluntary reporting of incidents, notifications, and the cyber resilience network (further details to follow) | Eric Veraart & Guy Hollosy, National Police Tackling the problem of booters through international cooperation |
| 16:45 | Plenary closing | Plenary closing |
| 17:00 | Drinks & bites | Drinks & bites |
Arda Gerkens, Chair of the Board of the Authority for Online Terrorist and Child Pornography Material (ATKM), will discuss the mandate and activities of this new regulatory body. Hosting providers and other online service providers may encounter the ATKM if terrorist content or CSAM material is detected on their systems. In such cases, the ATKM can issue an order to remove the content within a legally prescribed period. Arda Gerkens will explain the how, what, and why of this process, with an opportunity for questions from the audience.
Bibi van Alphen, advisor for legal affairs and public affairs at Freedom Internet, will speak at NBIP NEXT about the lawsuit that Freedom, along with BIT and A2B Internet, is pursuing against the Council of the EU.
Shortly after the outbreak of the war against Ukraine, European ISPs were obliged by the EU to block certain Russian (state) media. This censorship is an unprecedented and severe measure. There has been little discussion about this decision since then, while the list of blocked media continues to grow. The core of this case is therefore the question of whether the freedom of information that is part of a democracy may be sacrificed to combat disinformation, and what can be expected from providers in this regard.
Matthijs van Amelsfort has been the director of the Dutch National Cyber Security Center (NCSC) since September 1, 2024. Before accepting this position, he worked at the National Police Unit for Investigation and Intervention, National Criminal Investigation Service as head of the High Tech Crime Team. During his session at NBIP NEXT, Matthijs will discuss the role of the NCSC in implementing the Cybersecurity Act (NIS2), focusing on topics such as the mandatory and voluntary reporting of incidents by providers and the Cyber Resilience Network.
