HomeCommittees

Committees

OTA Working Groups & Committees
OTA hosts Working Groups and Committees to develop best practices, foster collaboration, and promote stewardship, security, and corporate responsibility. They focus on issues that are important to our community, providing an opportunity to actively participate in the work of the Internet Society and the Online Trust Alliance. Participation is open to all employees of Internet Society organizational member companies in good standing and invited subject matter experts. Working Groups typically have robust online discussions and meet via web conference once per month. Committees tend to be email-only discussion lists with occasional calls as needed. Below is a summary of Working Groups and Committees.   

Internet of Things (IoT)

Addressing the mounting concerns and collective impact of connected devices, the IoT Working Group focuses on fostering collaboration, promoting the benefits of bringing "trusted" IoT devices and services to scale, and promoting the importance of self-regulation and voluntary codes of conduct addressing security, privacy, and life-cycle risks and concerns. Learn more about our IoT work >>

Data Protection & Breach Readiness Planning

Annual data breaches now top billions of exposed records and the growing data economy brings with it growing risk. The Data Protecion Working Group focuses on the development and advancement of best practices and prescriptive advice to enhance data protection practices and promote planning to mitigate cyber breaches and data loss incidents. A key deliverable of this committee is OTA's annual Data Protection Breach Readiness Guide, one of OTA's most popular reports. Learn more about our data protection initiative >>

Trust Audit Planning

The Trust Audit Planning Working Group participates in the planning of the annual Online Trust Audit & Honor Roll, including reviewing new criteria, evaluating automated tools, and providing input into the weighting and scoring of data elements. The Audit holistically examines security, privacy, and consumer protection best practices. Learn More >>

Email Security & Integrity Committee

Email plays a critical role in today's online ecosystem. The Email Security & Integrity Working Group focuses on increasing the integrity and trust of legitimate email, while reducing spearphishing, spam, and social engineering email exploits. The group works to promote adoption of email security and best practices for all classes of email senders and receivers, including interactive marketers, ISPs, enterprises, and government agencies. Key efforts include promoting the business and technical value of SPF, DKIM, DMARC, and TLS. Learn more >>

Infrastructure & SSL/TLS Best Practices

The Infrastructure & TLS/SSL Best Practices Committee advances best practices to protect critical infrastructure from exploits and vulnerabilities, and increase resiliency by supporting identity, authentication, brand protection, anti-fraud, and trust mechanisms. The group tracks risks (e.g. malvertising), highlights current and emerging best practices, develops business and technical value propositions, and provides tools, outreach, and resources to advance adoption of best practices. The Committee is generally a discussion list for service/cloud providers interested in the integrity and security of their services and supply chains. Learn more >>

Privacy

The Privacy Working Group promotes best practices including tools and technologies that allow users to opt out of third-party data collection, while underscoring the value exchange consumers receive from ad-supported sites and services. The group promotes the need to move from a compliance mindset on data collection, retention, and usage, to one of stewardship.   Learn more >>