Download presentation
Presentation is loading. Please wait.
1
ARF DEFENSE OFFICIALS' DIALOGUE 13TH ARF SECURITY POLICY CONFERENCE REGIONAL CYBER SECURITY CHALLENGES DIR. NEBUCHADNEZZAR ALEJANDRINO CHIEF, CYBERSECURITY DIVISION DEPARTMENT OF NATIONAL DEFENSE P H I L I P P I N E S
2
I
3
5 DOMAINS OF MILITARY OPERATIONS
4
ADDRESS BAR SPOOFING ADVANCED PERSISTENT THREATS ADWARE ARBITRARY COMMAND EXECUTION ARRAY INTEGER OVERFLOWS BACKDOORS BLENDED THREATS BUFFER OVERFLOWS CODE INJECTIONS COOKIE DISCLOSURES CROSS SITE REQUEST FORGERY CROSS SITE SCRIPTING DATA AGGREGATION ATTACKS DATA EXFILTRATION DENIAL OF SERVICE DIRECTORY TRAVERSALS DNS POISONING FILE OVERWRITE FORCED TWEET FORMAT STRINGS FRANKENMALWARE HEAP OVERFLOWS INFORMATION DISCLOSURES KEYLOGGERS LOCAL FILE INCLUSIONS LOCAL STACK BUFFER OVERFLOW MALWARE MAN IN THE BROWSER ATTACKS MAN IN THE MIDDLE ATTACKS NULL BYTE INJECTION OPEN REDIRECTION PRIVILEGE ESCALATIONS REMOTE CODE INJECTION REMOTE CODE EXECUTION REMOTE COMMAND EXECUTIONS REMOTE STACK BUFFER OVERFLOW ROOTKITS SCAREWARE SHELL UPLOADS SPYWARE SQL INJECTIONS STACK POINTER UNDERFLOW TOJAN-DOWNLOADERS TROJANS VIRUSES WORMS MALVERTISING CRIMEVERTISING HTTP PARAMETER POLLUTION VECTORS OF ATTACK ARBITRARY FILE DOWNLOADS DNS CHANGES
5
BLOODLESS NO BOUNDARIES ACCESSIBLE ASSYMMETRICAL ANONIMITY ATTRIBUTION PROBLEM CHEAP CHARACTERISTICS OF CYBER ATTACK
6
No.Country Internet Users by 2016 Internet Penetration % Population Internet Speed (MBps) 1China721,434,54752.20%1,382,323,3324.1 2India462,124,98934.80%1,326,801,5762.8 3U.S.286,942,36288.50%324,118,78714.2 4Japan115,111,59591.10%126,323,71517.4 5Russia102,258,25671.30%143,439,83211.6 6Indonesia53,236,71920.40%260,581,1003.9 7Viet Nam49,063,76252%94,444,2003.8 8Philippines44,478,80843.50%102,250,1333.2 9South Korea43,274,13285.70%50,503,93326.7 10Pakistan34,342,40017.80%192,826,5022.0 TOP 10 ARF’S INTERNET USER PENETRATION & INTERNET SPEED http://www.telegraph.co.uk/travel/maps-and-graphics/Mapped-The-world-according-to-Internet-connection-speeds/ http://www.internetlivestats.com/internet-users-by-country/
7
ARF COUNTRIES AVERAGE INTERNET SPEED No.Country Internet Speed (MBps) PopulationInternet Users Internet Penetration % 1 South Korea 26.750,503,93343,274,13285.70% 2 Japan 17.4126,323,715115,111,59591.10% 3 U.S. 14.2324,118,787286,942,36288.50% 4 Singapore 13.95,696,5064,699,20482.50% 5 Canada 13.136,286,37832,120,51988.50% 6 Russia 11.6143,439,832102,258,25671.30% 7 Thailand 9.368,146,60929,078,15842.70% 8 New Zealand 9.34,565,1854,078,99389.40% 9 Australia 8.224,309,33020,679,49085.10% 10 Mongolia 7.03,006,4441,069,69335.60% 11 Malaysia 5.230,751,60221,090,77768.60% 12 Sri Lanka 4.820,810,8166,087,16429.30% 13 China 4.11,382,323,332721,434,54752.20% 14 Indonesia 3.9260,581,10053,236,71920.40% 15 Viet Nam 3.894,444,20049,063,76252% 16 Cambodia 3.315,827,2411,756,82411.10% 17 Philippines 3.2102,250,13344,478,80843.50% 18 India 2.81,326,801,576462,124,98934.80% 19 Brunei 2.7428,874310,20572.30% 20 Bangladesh 2.1162,910,86421,439,07013.20% 21 Myanmar 2.154,363,4261,353,6492.50% 22 LaoPDR 2.16,918,3671,087,56715.70% 23 Pakistan 2.0192,826,50234,342,40017.80% 24 Timor-Leste 2.01,211,24514,0301.20% 25 Papua New Guinea 1.27,776,115906,69511.70% http://www.telegraph.co.uk/travel/maps-and-graphics/Mapped-The-world-according-to-Internet-connection-speeds/ http://www.internetlivestats.com/internet-users-by-country/
8
ACTUAL CYBER ATTACKS REPORTED ISRAEL vs IRAN US vs IRAN AND OTHERS…
9
The Stuxnet virus cost an estimated US$1 million to create and the former CIA Director Michael Hayden said “it was sophisticated enough to have required the backing of one or more nation states”. http://www.thenational.ae/business/industry-insights/technology/former-cia-chief-speaks-out-on-iran-stuxnet-attack STUXNET ONLY COST US$ 1M
10
“A nation with less wealth can now compete with a nation of more wealth”!
11
REVOLUTION IN MILITARY AFFAIRS
12
II
13
Complexity of threats Dilemma of attribution State and non-state actors No common understanding of “cyber” terminology Public-Private sector cooperation GLOBAL & REGIONAL CHALLENGES OF COMMON INTEREST
14
Insufficient R&D Unavailability of expertise Public awareness Civil liberties Political unity GLOBAL & REGIONAL CHALLENGES OF COMMON INTEREST
15
Varying development and priorities ASEAN way GLOBAL & REGIONAL CHALLENGES OF COMMON INTEREST
16
Permanent Coordinating Mechanism Establish a Robust ASEAN-CERT Security of the ASEAN Secretariat SOLUTIONS TO GLOBAL AND REGIONAL CHALLENGES
17
Create a Cyber Security Hub of Excellence Creation of a “Cyber-Secured Zone” Increase Public Awareness and Civil Liberties’ Protection SOLUTIONS TO GLOBAL AND REGIONAL CHALLENGES
18
Enhance Defense Cooperation and Law Enforcement Agree a Common Position on Responsible State Behavior Further Strengthen International Cooperation SOLUTIONS TO GLOBAL AND REGIONAL CHALLENGES
19
MACTAN CEBU DECLARATION Connected ASEAN: Enabling Aspirations 12th ASEAN TELMIN (Telecommunications & Information Technology Ministers Meeting) 16 November 2012 – Mactan, Cebu, Philippines.
20
MACTAN CEBU DECLARATION Connected ASEAN: Enabling Aspirations 1. International and regional collaboration 2.“Conducive, safe, secured, and trusted environment 3. Safe and secured fixed and mobile broadband. 4. Promotion of a secure online environment
21
5.Facilitating robust and resilient information infrastructure 6.Best practices on data protection 7.ASEAN CERT Collaboration MACTAN CEBU DECLARATION Connected ASEAN: Enabling Aspirations
22
III
23
CENTER FOR STRATEGIC AND INTERNATIONAL STUDIES WWW.CSIS-TECH.ORG http://www.csis-tech.org/cyber-incident-timeline/
24
HACKMAGEDDON - INFORMATION SECURITY TIMELINES AND STATISTICS WWW. HACKMAGEDDON.COM http://www.hackmageddon.com/2016/02/16/january-2016-cyber-attacks-statistics/
25
ZONE-H UNRESTRICTED INFORMATION ZONE-H.ORG/ARCHIVE/ http://zone-h.org/archive/special=1
26
LIVE ATTACK MAPS DIGITAL ATTACK MAP WWW.DIGITALATTACKMAP.COM CHECKPOINT THREATCLOUD WWW.CHECKPOINT.COM
27
ARF DEFENSE OFFICIALS' DIALOGUE 13TH ARF SECURITY POLICY CONFERENCE THANK YOU DIR. NEBUCHADNEZZAR ALEJANDRINO CHIEF, CYBERSECURITY DIVISION DEPARTMENT OF NATIONAL DEFENSE P H I L I P P I N E S
Similar presentations
