SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia
Microsoft backs Red Cross digital emblem initiative

Microsoft backs Red Cross digital emblem initiative

Tue, 14th Jul 2026 (Today)
Sean Mitchell
SEAN MITCHELL Publisher

Microsoft is backing the International Committee of the Red Cross in the next phase of the Digital Emblem initiative, which aims to identify protected medical and humanitarian digital assets in cyberspace.

The effort focuses on a machine-readable signal designed to mark systems used by hospitals, relief groups and other protected organisations during armed conflict. The goal is to make those systems easier to recognise, verify and avoid during cyber operations.

Unlike the Red Cross, Red Crescent and Red Crystal symbols used in physical conflict zones, there is no widely adopted equivalent for digital infrastructure. That gap has become more significant as medical and humanitarian work relies increasingly on communications systems, logistics tools, patient care software, cloud services and data centre infrastructure.

That dependence has made it harder to distinguish protected humanitarian systems from surrounding networks, increasing the risk of misidentification, spillover and broader disruption from cyber activity in conflict settings.

Operational shift

The latest stage of the initiative marks a shift from concept work to testing, standards development and implementation. Over several years, the International Committee of the Red Cross has worked with states, the Red Cross and Red Crescent Movement, technical specialists, standards bodies, academic institutions and private sector groups on the project's legal and technical foundations.

The proposed emblem would not create new legal protections or replace cybersecurity measures. Instead, it is meant to make existing protections under international humanitarian law more usable in digital environments, where protected assets are often hard to identify.

That distinction is central to the project. Governments and civil society groups have long argued that civilian services, medical care and humanitarian operations should be protected in cyberspace just as they are in physical conflict, but putting that principle into practice has proved difficult.

As cyber defence and offence become more automated, the need for machine-readable signals has grown. The initiative therefore seeks to establish a standard way for relevant systems to be discovered, authenticated and verified in real-world conditions.

Standards work

The next phase is expected to involve technical bodies including the Internet Engineering Task Force and the International Telecommunication Union. It will also require guidance for organisations operating protected digital infrastructure, along with engagement with the actors expected to recognise the emblem in practice.

Industry groups are likely to play a significant role because humanitarian and medical organisations depend on a broad digital ecosystem rather than isolated networks. That includes cloud services, telecommunications networks, identity systems, cybersecurity tools and data centres.

Any practical approach will need to fit existing defensive workflows. The emblem must work both for organisations seeking to signal that systems support protected functions and for defenders trying to verify those claims during live operations.

Microsoft linked its support for the initiative to its broader cyber policy positions, including previous calls for stronger international norms and the Cybersecurity Tech Accord. Its work with governments and other partners, it said, had shown the value of trusted signals and shared defence when healthcare, critical infrastructure and humanitarian operations are targeted.

Role of trust

A major challenge for the Digital Emblem will be credibility. The International Committee of the Red Cross is seen as important to that effort because of its neutral humanitarian role, but the signal would also need to be technically reliable and interoperable across borders and technology providers.

That requirement comes at a time of geopolitical fragmentation and low trust between states. In that environment, standards-based approaches may offer one of the few routes to broader acceptance because they can reduce ambiguity even where political agreement is limited.

For hospitals and aid organisations, the issue is increasingly urgent. Their ability to deliver care, coordinate supplies, communicate with staff and protect sensitive data depends on digital infrastructure that may sit on commercial platforms or pass through shared networks, making clear identification difficult during conflict.

Supporters of the initiative say the work ahead will require participation from governments, humanitarian groups, medical organisations, technology companies, telecommunications providers, cybersecurity teams and standards bodies. Testing and implementation guidance are expected to determine whether the concept can move beyond legal and policy debate into practical use.

"Turning that promise into practice will require sustained cooperation so that those who care for the wounded, the sick, and civilians can be more easily recognized, respected, and protected in the digital age," said Mike Yeh, Vice President, Deputy General Counsel, Customer Security & Trust, Microsoft.