AP Security Framework Suguru Yamaguchi JPCERT/CC.

Slides:



Advertisements
Similar presentations
Clara CSIRTs in Latin America and the Caribbean CCIRN 2004 Cairns, Australia July 2004 Michael Stanton CLARA Technical Committee RNP- Brazil (material.
Advertisements

© 2004 APCERT APCERT Activity Update Yurie Ito JPCERT/CC (On behalf of the APCERT Secretariat)
1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.
Philippine Cybercrime Efforts
Anti-SPAM activities in Malaysia - Current Situation, Regulatory Environment and Future Developments ITU virtual conference on anti-spam regulation and.
Homeland Security Information Network-Emergency Management (HSIN-EM) Fire Service Community Overview Technologies for Critical Incident Preparedness Conference.
Computer Emergency Response Teams
The Role of Governments Caribbean Telecommunications Union Ministerial Seminar May 29, 2012 Heather Dryden Chair - Governmental Advisory Committee, ICANN.
High level expert meeting to develop the Near East Regional Action Plan to Implement the Global Strategy to improve Agricultural and Rural Statistics.
Joint efforts in incident response in AP region and future work with RIR Suguru Yamaguchi JPCERT/CC.
Technical Assistance for Civil Society Organisations Regional Office This project is funded by the European Union Regional Training on 'Development & Management.
A Framework to Implement a National Cyber Security Structure for Developing Nations ID Ellefsen - SH von Solms - Academy.
Standardization Framework (Myanmar) Ye Yint Win President Myanmar Computer Professionals Association Chair-Standardization Committee, Myanmar Computer.
1 Korea status and future plan on spam & hacking complaints August 30, 2001 Yong Wan Ju Korea Network Information Center.
“ICANN Reform and Government Participation” Dr Paul Twomey Chair, Governmental Advisory Committee Tuesday, October 10, 2002 Mexico City.
Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.
1 Case Study ESTABLISHING NATIONAL CERT By Saleem Al-Balooshi Etisalat - AE.
(Geneva, Switzerland, September 2014)
James Ennis, Department of State, USA ITU-D Question 22/1 Rapporteur.
1 May 2006 … Identity management - Internet - Data controller - PKI - Vulnerabilities - Fingerprint - Critical Information Infrastructure - Privacy and.
Cyber Security Issues in South Korea and CSIRTs Cooperation September 17, 2014 Eunju Pak
JPCERT/CC May Fixed-Point Auto Data Collecting System Getting more accurate Scan and Prove data to provide more accurate network traffic analysis.
APCERT : APNIC Meeting 2014’ International Collaboration for Regional Cybersecurity Risk Reduction - APCERT Collaboration with Stakeholders Yurie Ito Chair,
IT Security Policy in Japan 23 September 2002 Office of IT Security Policy Ministry of Economy, Trade and Industry JAPAN.
Copyright © 2008 APCERT APCERT Activity Updates Asia Pacific Computer Emergency Response Team Jia-Chyi Wu Deputy Director, TWNCERT On behalf of APCERT.
Ian Chiang APTLD Secretariat 30 August – Asia Pacific Top Level Domain Association – An organisation for ccTLD (country-code Top Level Domain) registries.
BITS Proprietary and Confidential © BITS Security and Technology Risks: Risk Mitigation Activities of US Financial Institutions John Carlson Senior.
PREPAREDNESS AND RESPONSE TO CYBER THREATS REQUIRE A CSIRT By Jaco Robertson, Marthie Lessing and Simon Nare*
TRADE UNION DEVELOPMENT COOPERATION NETWORK ASIA PACIFIC REGION Working modalities of the TUDCN Bangkok, 3 rd 4 th and 5 th of December.
International Atomic Energy Agency THE “EMERGENCY CONVENTIONS” Interregional Training Course on Technical Requirements to Fulfil National Obligations in.
Copyright © 2010 APCERT Graham Ingram AusCERT SC member of APCERT AP* Retreat, Gold Coast 23 rd August 2010.
Day 4-2 Inter-Network Cooperation 4-2.inter-network-cooperation 1 Cooperation and Coordination community, sharing, incident response, trust.
Role for Electric Sector in Critical Infrastructure Protection R&D Presented to NERC CIPC Washington D.C. June 9, 2005 Bill Muston Public Release.
2011 East African Internet Governance Forum (EA – IGF) Rwanda Cyber briefing: Positive steps and challenges Didier Nkurikiyimfura IT Security Division.
Achieving a just and secure society How can international cooperation secure the internet? An overview of bilateral/multilateral issues of security in.
InfraGard A Government and Private Sector Alliance Information sharing begins with human relationships – people talking with people whom they trust. Information.
Randy Beavers CS 585 – Computer Security February 19, 2009.
Cyber-security policy to encourage CSIRTs activities Yasuhiro KITAURA Ministry of Economy, Trade and Industry, JAPAN.
International Telecommunication Union Geneva, 9(pm)-10 February 2009 BEST PRACTICES FOR ORGANIZING NATIONAL CYBERSECURITY EFFORTS James Ennis US Department.
Advanced attack techniques Advanced attack techniques Increased by passing techniques against the existing detection methods such as IDS and anti- virus.
A Global Approach to Protecting the Global Critical Infrastructure Dr. Stephen D. Bryen.
How we work as a national CERT in China ZHOU Yonglin CNCERT/CC, China 2 Addressing security challenges on a global scaleGeneva, 6-7 December 2010.
APNIC Security Update APSIRCC 2002 Tokyo, 25 March 2002.
Committee on Earth Observation Satellites JAXA Plenary Agenda Item # th CEOS Plenary Kyoto International Conference Center Kyoto, Japan 5 – 6 November.
Introducing China Network Operators' Group (CNNOG) Song Zhang APIA and ISOC-AU Open Forum at APRICOT 2006 FEB 28, 2006.
November 2, 2006 LESSONS FROM CIPAG 1 Lessons from Critical Infrastructure Group Bill Bojorquez November 2, 2006.
Ontario Library Association Super Conference January 29, 2004 Toronto, Ontario.
TLP:Green FIRST/TF-CSIRT Technical Colloquium January 25 th – 27 th, 2016 Prague, CZ TLP:Green.
Update on APCERT Asia Pacific Computer Emergency Response Team Thomas Ng, SingCERT (On behalf of APCERT)
The Practices of CERT -- Building National Computer Network Emergency Response Capability Mingqi CHEN CNCERT/CC APCERT APAN Bangkok.
1 Discussion APMP on: „Regional Cooperation in the Area of Metrology in Asia“/ November 23rd.
V Global Forum on Fighting Corruption and Safeguarding Integrity – South Africa Trade and Customs Partnership to fight against corruption and safeguard.
Information and Network security: Lithuania Tomas Lamanauskas Deputy Director Communications Regulatory Authority (RRT) Republic of Lithuania; ENISA Liaison.
M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 10 – Information society and media.
1 David C. Kibbe, MD MBA DirectTrust Collaborating to Build the Security and Trust Framework for Direct Exchange June 20, 2013.
Issue Date: Revision: APNIC Outreach Activities in Cyber Security Adli Wahid Security Specialist
APCERT Dr. Suguru Yamaguchi JPCERT/CC. What’s APCERT? “Asia Pacific Computer Emergency Response Team” –Regional forum of CSIRT in Asia Pacific –Established.
Strategic Objectives for Goal 1 Draft Strategic Plan for INTOSAI 2017 – 2022 Provide a strong organizational framework to support INTOSAI’s standard- setting.
Building Global CSIRT Capabilities Barbara Laswell, Ph. D
WISE 2017 Collaborating Communities
Ken Watson 9 Sep 2003 Critical Infrastructure Assurance: Business Case for Public-Private Partnership Ken Watson 9 Sep 2003
Certification of Trusted Repositories
Cyber Security coordination in Europe CERT-EU’s perspective
APCERT Activities Asia Pacific Computer Emergency Response Team
Role for Electric Sector in Critical Infrastructure Protection R&D
Jamaica Clearing-House Mechanism (JA-CHM)
AVI AFRIQUE October 2018 Tshepo Peege
Activities, Challenges & Collaboration
Computer Emergency Response Team
CIPC Executive Committee Report-2
Presentation transcript:

AP Security Framework Suguru Yamaguchi JPCERT/CC

Topics Alliance among CSIRTs in AP Development of harmonization with government activities

Alliance among CSIRTs in AP

CSIRT Computer Security Incident Response Team –The concept was originally developed by U.S. during the incident called “ Internet Worm ” in CERT/CC –There are several types of CSIRT existing. Under government NPO Commercial services and Customer support ….

CSIRT: its functions Provide response to incidents happen in its constituency –Mechanism to obtain reports from customers in its constituency –Preparation for its response Technical support Communication Switchboard …… –Procedures

Technical analysis, guidance, … Involved site Vendors, ISP, SIers CSIRT: Coordination Victims working together CSIRT

CSIRT: its functions Information clearing house –Develop measures to fix security holes, against computer viruses and worms. Working with hardware/software vendors directly –CSIRT provides secure manner for distributing the information to the public Ex. Vendor notes

CSIRT: its functions Observations –Observe security incidents and develop forecast. Ex. Virus calendar –Warnings and Alerts Public awareness on the risk we are facing

info Analysis Forecasting CSIRT: warnings & alerts Technical source for fixing security holes –Vendor notes –CERT/CC advisory –…. Warnings & Alerts –Quick fix on systems in its constituency info

Alliance among CSIRT (1) There are many direct communication between CSIRT –Contact victims and involved sites via CSIRT –Sharing observations –Sharing technical information and vendor notes

Alliance among CSIRT (2) FIRST: Forum of Incident Response and Security Teams –CSIRT ’ s global forum – –Membership Basic infrastructure for communication among CSIRT; we can trust on communication with FIRST members.

Alliance among CSIRT (3) Development of regional forum –Internet is a dependable infrastructure for regional economic activities. –More demand to work together with other CSIRT in region. CERT-CC/KR and JPCERT/CC AusCERT and SingCERT ….

APSIRC2002 Organized by JPCERT/CC Held in March 2002 Invite CSIRTs in AP, CERT/CC, FIRST representative, … Agreement on development of regional forum of CSIRT –APCERT

APSIRC2002 JPCERT/CC AusCERT CNCERT/CC CCERT CERTCC-KR HKCERT/CC TWCERT/CC ID-CERT MyCERT SingCERT (Vietnam) ThaiCERT

APCERT (1) Asia Pacific Computer Emergency Response Teams –Regional forum of CSIRT in AP –1 st AGM will be held on Feb. 25 th in APSIRC2003 Invitation only APSIRC (AP Security Incident Response Conference) is our annual conference.

APCERT (2) Membership structure –Full member Accreditation process will be defined. Candidate for SC –General member Open membership for everyone Organization –Steering Committee, Secretariat, AGM –Chair will be elected among SC members, 2 yr. term

APCERT (3) Current core members –AusCERT, CERT-CC/KR, CCERT, CNCERT/CC, HKCERT, JPCERT/CC, MyCERT, SingCERT, TWCERT/CC –Kick-off members of APCERT More teams are “ online ” –ThaiCERT, ID-CERT, VN, ….

APCERT (4) Encourage and help establishment CSIRTs in this region –Still many economies do not have its CSIRT function Develop infrastructure to share technical and incident information among full members Provide “ awareness ” program for all the members Develop stable contact point in each economy Lobbying

APCERT (5) Financial structure –Not discussed yet. Basically “ Cost share model ” will be deployed among full members for APCERT. Sustainability is the issue But how? - AGM –APSIRC organized by JPCERT/CC for 2 more years. –Secretariat

Note Each full member does not represent its economy –multiple CSIRT in a single economy mutually complement Ex. Japan –JPCERT/CC – generic last resort –NIRT – for government –IPA – nation wide, but mainly concentrated on viruses so far –IIJ-ST – ISP ’ s customer support –….

Note We have to help “ evolving process ” of CSIRT –Initially, single CSIRT is formed. –Move to “ federation ” of CSIRT ISP does have a important role to reduce security incident. They are in front line for internet users. Government does have a responsibility to enrich its coverage in terms of security management: e- government. HW/SW vendors does have liability on its product.

Government Activities

Law Enforcement Police and other law enforcement bodies have their own “ working together ” environment. –Based on international mutual anti-crime treaty –Ex. G8 group ’ s “ Lyon group ”, Interpole, …

Regional WG ASEAN ’ s e-security WG APEC/TEL e-security WG E-government initiatives in each economy ….

Work Together Types of CSIRT –Government subsidiary –NPO –Customer support functions by ISP and Vendors Players are different in each segment. –Gov, CSIRT, Law Enforcement, …. Encourage them to have conversations –Mutual trust, sharing information, ….

Other aspects Homeland security against cyber terrorism National infrastructure protection Standardization on secure operation of information and communication systems. –ISO17799 and others –certification

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.