Cooperation activities in the ASEAN digital sector are guided by the sector’s strategic plans, namely, the ASEAN ICT Masterplan 2010-2015 (AIM2015) and the AIM2020. With the sectoral body’s name officially changed from ICT to Digital in 2019, this shift has been reflected in subsequent regional policy frameworks — notably in the ASEAN Digital Masterplan 2021–2025 (ADM 2025) and the ASEAN Digital Masterplan 2026–2030 (ADM 2030).). Additionally, new initiatives were introduced to address emerging issues related to the development of digital economy.

ADM2025

The ADM2025 was launched in 2021 towards transforming ASEAN into a leading digitally connected community and economic bloc powered by secure, transformative digital services, technologies, and ecosystems. This visionary plan, encompassing 8 Desired Outcomes and 37 Enabling Actions envision ASEAN to leap giant strides towards becoming both a digital economy and a digital society. It targets recovery from COVID-19; enhancements in broadband infrastructure; trustworthy digital services; a competitive digital market; e-government service quality; seamless digital connectivity for businesses; enhanced digital capacity for all; and fostering a digitally inclusive society within ASEAN. ASEAN will continue to implement the Desired Outcomes and Enabling Actions outlined in ADM2025 in a people-centered approach, adapting to COVID-19 changes in a sustainable and greener way.

ADM2030

As ADM2025 reaching its conclusion in 2025, the development of the next ASEAN Digital Masterplan for 2026-2030 (ADM2030) becomes crucial to build upon the achievements of the ADM2025 and to drive continuous digital transformation and supporting the broad goals of the ASEAN Economic Community (AEC) Strategic Plan 2026-2030. ADM2030 shall accelerate ongoing digitalization efforts to meet future demands and embed sustainability in digital transformation. This will be achieved through coordinated policy frameworks, technical collaboration, and capacity enhancement initiatives. ADM2030 is expected to be approved at the 6th ADGMIN in January 2026 in Viet Nam.

The cooperation activities under the digital sector include the following:

1. Best Practice and Guidelines Development



The ASEAN ICT/Digital sector has been very mindful about the need to bridge the gaps in the level of development across the ASEAN Member States, by conducting and stocktaking studies across ASEAN Member States on specific policy issues and workshops to identify and distill best practices that ASEAN Member States can use as guidance to advance their respective national development in the areas of concern.




The policy areas studied and discussed are, among others, broadband infrastructure deployment, bridging the gaps of access to ICT among the population (digital divide), adoption of emerging technologies, radio frequency spectrum management, telecommunication services regulation, intra-ASEAN submarine cable connectivity resilience, network security, and critical information infrastructure protection.



2. Stakeholders Consultative Dialogues



With the ever increasing complexity of online platform and digital technology regulations, the ASEAN Digital sector regularly engage in consultative dialogues among ASEAN digital regulators as well as with stakeholders such as external partners, the digital industry players and other private sector entities to ensure that the regulations do not stifle innovation and growth in the industry while achieving policy objectives such as protecting citizen’s privacy and security, ensuring market fairness, and providing equitable access.




The regular dialogues include annual consultative meetings between the ASEAN Digital Senior Officials’ Meeting (ADGSOM) and the ASEAN Telecommunications Regulators’ Council (ATRC) with the ASEAN Dialogue and Development Partners.



3. Establishment of Framework Agreements



The sector has also been developing regional framework agreements, taking reference of international best practices, that serve as common principles and/or approaches that AMS are committed to adhering with in developing their national policies and regulations. The frameworks agreements are aimed at promoting legal and regulatory compatibility across AMS to facilitate the integration of economy and society in the region towards an environment that is conducive to the growth of digital economy and society.




Amongst the framework agreements are the ASEAN Framework on Personal Data Protection (PDP) – adopted in 2016, ASEAN International Mobile Roaming (IMR) Framework – in 2018, and ASEAN Digital Data Governance (DDG) Framework – in 2018 – which was built upon the ASEAN PDP Framework. Among the key initiatives in the DDG Framework are the development of the ASEAN Cross-border Data Flow Mechanism and the ASEAN Data Management Framework which includes an ASEAN Data Classification Framework. The development of the data-related frameworks was driven by the growing demand for data collection, monetization and transfer by digital applications and solutions, including smart applications in the 4th Industrial Revolution (4IR).



4. Digital Talent Development



The Digital sector has also been organizing regular competition-based events to promote the development of digital talents and the growth of digitally-enabled innovation, especially amongst ASEAN youth and young professionals.




Amongst the annual competition-based events are the ASEAN Cyber-Kids Camp – since 2009, ASEAN ICT Innovation Award – since 2011, ASEAN Makers Hackathon – since 2017, and ASEAN-Japan Cyber SEA Game – since 2018.

ASEAN Cybersecurity Cooperation Strategy

Cybersecurity cooperation in the ASEAN digital sector is primarily coordinated by the ASEAN Network Security Action Council (ANSAC), a working group under ADGSOM. Established in 2012, ANSAC seeks to promote network integrity, information security, data protection, collaboration among the national Computer Emergency Response Teams (CERTs) of ASEAN Member States, as well as other cybersecurity-related initiatives.

Building on this mandate, the ASEAN Cybersecurity Cooperation Strategy (ACCS) 2017–2020 was developed in 2017, focusing on three priority areas: (i) cybersecurity incident response; (ii) CERT policy and coordination; and (iii) cybersecurity capacity building. To address emerging cyber developments and to further strengthen the region’s ability to support a secure and resilient digital economy, ASEAN adopted the next phase of the strategy, ACCS 2021–2022, at the 2nd ADGMIN in January 2022. This updated strategy expands the scope of cooperation across five dimensions: (1) Advancing Cyber Readiness Cooperation; (2) Strengthening Regional Cyber Policy Coordination; (3) Enhancing Trust in Cyberspace; (4) Regional Capacity Building; and (5) International Cooperation. As the ACCS 2021–2025 approaches its conclusion, ANSAC is now developing the new ACCS 2026–2030, with the aim of seeking its endorsement at the 6th ADGMIN in January 2026.

ASEAN Regional Computer Emergency Response Team (CERT)

Under the ASEAN Digital Masterplan (ADM) 2025, regional cooperation in cybersecurity incident response remains essential to strengthening ASEAN’s overall cybersecurity posture. In response to the growing complexity and scale of cyber threats, ASEAN established the ASEAN Regional Computer Emergency Response Team (CERT) to enhance cooperation, bolster collective defences, and support the broader goal of building a secure and resilient ASEAN digital economy. The ASEAN Regional CERT was formed following a feasibility study conducted in 2019, with the aim of leveraging the strengths and expertise of each ASEAN Member State’s national CERT to deliver a more coordinated and effective regional incident response capability.

The ASEAN Regional CERT operates under a robust structure led by a rotating overall coordinator and supported by a task force comprising representatives from all AMS. Its work is guided by an Operational Framework endorsed at the 3rd ADGMIN in February 2023, which outlines eight core functions focused on regional coordination, knowledge-sharing, operational collaboration, and strategic partnerships. This framework provides a clear foundation for enhancing preparedness and facilitating timely and effective responses to cyber incidents across the region.

Following the endorsement of its financial model at the 4th ADGMIN in February 2024, the ASEAN Regional CERT transitioned into full implementation. A major milestone was achieved in October 2024 with the launch of its physical facility in Singapore, marking a significant step forward in operationalising ASEAN’s regional incident response capabilities and reinforcing the region’s commitment to a safer and more resilient digital future.

Regional Capacity-Building Initiatives

ASEAN continues to strengthen regional cybersecurity capacity through a range of initiatives implemented in partnership with its Dialogue Partners. Notably, the ASEAN-Japan Cybersecurity Capacity Building Centre (AJCCBC) and the ASEAN-Singapore Cybersecurity Centre of Excellence (ASCCE) have played an instrumental role in supporting communication, information sharing, and the exchange of technical expertise and best practices among ASEAN Member States.

Established in Bangkok, Thailand, in 2018, the AJCCBC has significantly contributed to enhancing the region’s readiness and resilience. It provides comprehensive training programmes on fundamental cybersecurity incident response and digital forensics, including the well-recognised Cyber Defense Exercise with Recurrence (CYDER). These programmes are designed for ICT officials from government agencies and critical infrastructure operators across ASEAN, helping to strengthen operational capabilities and promote a shared understanding of emerging cyber threats.

Complementing these efforts, ASEAN has also been implementing multidisciplinary cybersecurity initiatives through the ASEAN-Singapore Cybersecurity Centre of Excellence (ASCCE), launched in 2019. The ASCCE offers modular courses tailored for Senior Government Officials from ASEAN Member States, covering a broad spectrum of topics such as cybersecurity operations, advanced technologies, policy development, and cyber diplomacy. This initiative supports ASEAN’s commitment to fostering a secure, trusted, and interoperable digital environment by equipping officials with the knowledge and skills required to navigate the increasingly complex cyber landscape.

Anti-Online Scams

Online scams remain a pressing concern across ASEAN, contributing to the rise of cyber-enabled transnational crime and resulting in significant economic losses. Recognising the need for a coordinated and comprehensive regional response, the ASEAN Working Group on Anti-Online Scams (WG-AS) was established in February 2024 under the ADGMIN to strengthen collective efforts in addressing this growing threat.

As part of its mandate, the WG-AS has developed the Report on Online Scam Activities in ASEAN (2023–2024) and the ASEAN Recommendations on Anti-Online Scams, both of which were endorsed at the 5th ADGMIN in January 2025. These key initiatives aim to enhance information sharing, support regional gap analysis, arnd promote cross-sector collaboration among relevant agencies in combating online scams more effectively.

Building on this progress, the WG-AS is currently developing the ASEAN Guide on Anti-Scam Policies and Best Practices, which is envisaged for endorsement at the 6th ADGMIN in January 2026. The Guide will provide practical recommendations for governments, regulators, and industry stakeholders to adopt robust and effective anti-scam measures across digital and telecommunications channels, thereby further strengthening ASEAN’s collective resilience against online scams.

Implementation of the United Nations Norms of Responsible State Behaviour in Cyberspace

Further advancing ASEAN’s efforts to secure the region’s cyberspace, ASEAN subscribed in principle in 2018 to all 11 voluntary and non-binding norms of responsible State behaviour in cyberspace outlined in the 2015 UN Group of Governmental Experts (UNGGE) report, making ASEAN the first region to do so. This collective decision underscored ASEAN’s commitment to promoting stability, transparency, and confidence-building in the digital domain.

Building on this commitment, the 2nd ASEAN Cybersecurity Coordinating Committee (ASEAN Cyber-CC), held in November 2021, adopted the ASEAN Regional Action Plan (RAP) on the Implementation of the Norms of Responsible State Behaviour in Cyberspace, as recommended by the 2015 UNGGE report. The RAP outlines a series of initiatives categorised into several key focus areas: (1) international cooperation; (2) development of policies, strategies, and frameworks; (3) awareness-raising; (4) strengthening national cybersecurity and cybercrime legislation; (5) enhancing cybercrime and incident response cooperation; and (6) fostering a trustworthy digital ecosystem. These initiatives aim to support ASEAN Member States in translating global norms into practical regional and national actions.

To further operationalise these commitments, ASEAN completed the development of the ASEAN Norms Implementation Checklist (NIC) in September 2024. The NIC provides a set of actionable steps that States may consider when implementing the UN norms of responsible State behaviour in cyberspace. Designed to be practical and accessible, the Checklist supports all States—including smaller ones with limited capacities—by offering clear guidance to strengthen cybersecurity governance. By facilitating a shared understanding of expected behaviours in cyberspace, it is hoped that the NIC will contribute to enhancing trust, reducing misperceptions, and supporting international peace and security in the digital domain.