OECD published a book on “Computer Viruses and Other Malicious Software: A Threat to the Internet Economy.” Malware attacks are increasing, and the book recommends a wide range of improvements, among them: improved legal frameworks and stronger law enforcement.

A report on Online Identity Theft titled OECD Policy Guidance on Online Identity Theft, gives an overview of  the definition, forms and methods, and recommendations for industry and government on how to fight them.

The OECD and the World Bank cooperated in organizing a workshop on Policy Coherence in the application of ICT’s for Development (ICT4D). With regard to the main conclusion for security considerations, they stated that the key challenges included a co-ordinated national approach, lack of implementation of existing best practices and lack of cross-border co-operation.


OECD released a project report called “Scoping paper on online Identity theft”, and recommends the development of adequate law enforcement countermeasures to prevent, detect and deter it.

The report included also with an analysis of the different legal approaches adopted by OECD member countries to address Identity theft, and examines the implications of creating a separate criminal offence for Identity theft.

Before 2008

The Organization for Economic Cooperation and Development (OECD) adopted in 2002 new guidelines for the Security of Information Systems and Networks: Towards a Culture of Security. This approach to the critical information infrastructure protection is a guideline, and as such not binding for member States.

An OECD Global Forum on Information Systems and Network Security was in 2003 held in Oslo, Norway. A Workshop on Cybercrime was organized in conjunction with this Forum.

The OECD Task Force on Spam was established in 2004 and delivered a report in 2006.
A joint APEC-OECD Workshop on Security of Information was held in Seoul in 2005. Several topics were discussed, including promoting global governmental incidents response.
In April 2007 an APEC-OECD Malware Workshop was held in Manila.

The OECD was the first international organization that initiated guidelines for computer crime, but do not today work directly on cybercrime per se. The organization focuses more on cybersecurity, and promotes a global coordinated policy approach building trust and confidence. The OECD Working Party on Information and Privacy (WPISP) develops international guidelines.