The impact of digital risks on the economy and technological sovereignty of the country was discussed at the T1 Forum

“Black swans” in the global economy are well known, and the damage from one of them – for example, the COVID-19 pandemic – is assessed International Monetary Fund at 12.5 trillion US dollars.
Given the pervasive role of technology in all areas of the economy and the struggle for technological sovereignty, any “black swan” in IT affects all industries. This challenge was discussed by the participants of the press briefing at the T1 Forum – representatives of the T1 IT holding, YADRO, F6, Positive Technologies, GC Solar, Orion soft.
“The term “black swan” has long gone beyond the framework of financial theory and has become a universal image. In the context of IT, this phenomenon sounds especially obvious – for us this is not a metaphor, but a reality. We see that digital systems are becoming increasingly complex, interconnected and vulnerable, the speed of change is constantly growing, and external factors in the form of geopolitics, regulatory measures and supply chain challenges force us to look for non-standard solutions,” commented Alexey Izosimov, Deputy General Director, Technical Director of T1 Integration (T1 IT holding).
An important topic is the search for a flexible strategy for the development of IT infrastructures in conditions of limited access to hardware and a continuing shortage of components. The press briefing participants discussed how to compensate for the shortage of hardware, especially in critical information infrastructure facilities, using architectural approaches, optimization of computing platform configurations and multi-cloud solutions.
“Architectural flexibility in such conditions becomes the basis of sustainability. To do this, we are resorting to virtualization and containerization to “decouple” services from specific servers, moving to using platforms where it is not the server model that is important, but a standardized execution layer (Kubernetes, OpenStack), using heterogeneous clusters using orchestrators that can take into account differences in resources. Multi-cloud solutions here can also act as an anti-scarcity tool,” added Alexey Izosimov.
The answer to new challenges to sustainability and security is the transition to trusted software and hardware systems. At the same time, experts emphasized that the criteria for “power of attorney” and the interpretation of regulatory requirements have not yet been unified, which is why both manufacturers and clients may face risks.
“Resolution of the Government of the Russian Federation No. 1912 introduces three criteria for a PAK power of attorney: presence in the register of the Ministry of Industry and Trade, availability of software in the register of the Ministry of Digital Development and, most difficult, a certificate from FSTEC or FSB, if the complex performs information security functions. In practice, no one knows exactly what “information security” means. In fact, any PAC with password authentication must have an FSTEC certificate. This creates difficulties for both manufacturers and clients – CII subjects. However, the situation may soon change – the draft amendments to the resolution proposed by the Ministry of Industry and Trade require a certificate only when the main function of the security system is to protect information or ensure the security of significant objects,” explained Pavel Karnaukh, director of the technical sales support department at YADRO.
According to the briefing participantsa trusted PAC is a solution that is developed and manufactured in Russia (in terms of software and key hardware components), is transparent in origin and supply chain, complies with security requirements (FSTEK/FSB), provides integrity control and secure loading, can be operated and updated without the participation of foreign suppliers, does not contain undeclared capabilities, is fully manageable and verifiable.
“Trusted PAC is not just a “domestic product”, but a predictable, supported and observable platform that can be safely operated over the long term. As an XDR vendor, which can also be supplied in PAC format, we see companies asking not just for a security tool, but for a predictable platform: so that it can be quickly deployed, integrated into the existing landscape, collect telemetry, centrally identify incidents and not waste time on complex integration. This is what is becoming a practical criterion for a power of attorney today,” added Dmitry Chernikov, Head of the Cyber Threat Detection and Prevention Department at F6 MXDR.
During the discussion, the speakers raised the question of what is the priority when choosing where to invest in conditions of limited resources – in productivity, sustainability andwhether safety. Representatives of vendors shared their practices and explained how trusted software packages, devsecops, and a responsible approach to checking the security of their solutions help ensure these conditions.
“We understand that our IT infrastructure operates stably and securely when business does not remember us. This means that applications will not fail, and the company will grow and develop without worrying about IT,” commented Maxim Berezin, director of business development at Orion soft.
Experts agreed that safety and sustainability are the priority of investment, the third point is productivity.
T1 Forum this year was held with the participation keyX playerov domestic IT market: the general partner of the forum issilt company YADROalso support himAli companies Solar (gold partner status), Positive Technologies And F6 (silver partner statuses), Orion soft. General media partner of the forum – Kommersant Publishing Housebusiness program partner – RBC group of companiesstrategic information partner – Russian newspapernews flow partner News.ruofficial media partners of the forum – Hi-Tech Mail, INC., Vedomosti, Frank Media, Russian Business and magazines Expert, Connect-WIT, Financial One, Monocle And Computerra. Community partners of the forum – editorial office of “Moscow Youth”, FinTech Association, Association “RUSSOFT”.
***




