Presentation is loading. Please wait.

Presentation is loading. Please wait.

“Premio Ettore Majorana – Erice – Scienza per la Pace”, Pontifical Academy of Sciences, Vatican, 17 December 2008 DR. PLAMEN VATCHKOV Chairman of SAITC.

Published byMeagan Powers Modified over 8 years ago

Similar presentations

Presentation on theme: "“Premio Ettore Majorana – Erice – Scienza per la Pace”, Pontifical Academy of Sciences, Vatican, 17 December 2008 DR. PLAMEN VATCHKOV Chairman of SAITC."— Presentation transcript:

1 “Premio Ettore Majorana – Erice – Scienza per la Pace”, Pontifical Academy of Sciences, Vatican, 17 December 2008 DR. PLAMEN VATCHKOV Chairman of SAITC STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

2 2  Winds of warfare in cyber space: inevitable or predictable;  Statistics impartiality;  General overview;  Wake-up call for Europe;  State of play (Bulgaria);  Our experience  Paving the way;  Efforts and results;  More achievements so far and beyond;  More key elements of the Bulgarian NIS policy;  Our ultimate goal;  The way forward. KEY POINTS: STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

3 3  New age of uncertainty: cyber warfare and its globalization;  cyber espionage; web vandalism; propaganda; gathering data; disturbed denial of service attacks; equipment disruption; critical infrastructure attacks; compromised counterfeit hardware  Special measures: cybersecurity;  Main priorities: security of network infrastructures and secure government services. WINDS OF WARFARE IN CYBER SPACE: INEVITABLE OR PREDICTABLE STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

4 4 Source: Internet World Stats, June 2008 INTERNET USERS (% OF POPULATION) STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

5 5 Source: Point Topic, 2008 July BROADBAND ACCESS WORLDWIDE STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

6 6 GLOBAL OVERVIEW   More than 80 million hacker attacks take place every day worldwide;   More than 100 000 viruses are well known;   More than USD 20 billion losses experience private companies worldwide due to hacker attacks (including the anti-virus software);   As of October 2008* the cybercrimes statistics is as follows:   e-mail connections per day: 2.5 billion;   spam rate: 69.7 %;   virus rate: 1 in 141.4;   phishing rate: 1 in 233.3   malicious websites/per day 5.424 STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS * Messagelabs

7 7  Convention against cybercrimes of Council of Europe, 23.11.2001  EU Communication on fighting spam, spyware and malicious software, 15.11.2006 (due to enhanced illegal online activities – further action)  EU Communication “Towards a general policy on the fight against cyber crime”, 22.05.2007 (improvement of co-operation between authorities and operators)  EU Programme for CIP (EPCIP), 12.12.2006  Directive for identification of European critical infrastructures will be adopted soon, taking into account 2 priority sectors – transport and energy. Criteria for identification of critical ICTs infrastructures are currently assessed and will be added to the scope of this directive at a later stage (3 years later)  Proposal for an EU decision on creating a Critical Infrastructure Warning Information Network CALL FOR THE EUROPEAN UNION STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

8 8  Identifying the necessity at a national level:  Brief overview of the Bulgarian ICT market *: 2008: more than 3mln. Internet users compared to 1,8mln. in 2005 as of 2007 broadband access by households continued its growth and reached 22.6% as of June 2008 the number of broadband access lines increased by approximately 26%  Vulnerabilities and most common cyber incidents for ICT resources: public and private sectors  Emerging Cyber Threats for 2009: national and international *Alpha research STATE OF PLAY (BULGARIA) STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

9 9 Source: NSI INTERACTION BETWEEN BUSINESS AND PUBLIC AUTHORITIES IN 2005 AND 2007 STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

10 10 THE BULGARIAN NIS EXPERIENCE 1. 1.ELABORATION OF CYBERSECURITY CULTURE; 2. 2.LEGAL FRAMEWORKS; 3. 3.OVERALL INCIDENT CO-ORDINATION AND CRISIS RESPONSE; 4. 4.INTERNATIONAL CO-OPERATION. STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

11 11 1. 1.ELABORATION OF CYBER SECURITY CULTURE - RAISING THE AWARENESS OF ALL STAKEHOLDERS:   National Electronic Communication Network (NECN): responsibility of the State Agency for Information Technology and Communications PAVING THE WAY STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

12 12 2. LEGAL FRAMEWORKS 2.1 Preventive measures:   basic legislative texts (Electronic Governance Act/Gov- CERT) 2.2 Remedial measures:   investigation and prosecution (Bulgarian Penal Code) 3. OVERALL INCIDENT CO-ORDINATION AND CRISIS RESPONSE   Bulgarian hi-tech security services (24/7 High Tech Crime Network) EFFORTS CONTINUE… STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

13 13 …AND LITTLE BY LITTLE MORE RESULTS 4.1 Existing (ENISA, CERT-Hungary and a Bulgarian private company, CEENET)   Establishment of a Government CERT in Bulgaria www.govcert.bgwww.govcert.bg   Recruitment, retention and training security professionals for the government (already started) 4. INTERNATIONAL CO-OPERATION STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

14 14 Notification and Publications Co-operation Signalizing and Warning Technical Support; Co-ordination Consultancy Strategic Recommendations Risk Analysis Incidents Handling Dissemination of Information MAIN FUNCTIONS AND SERVICES OF THE BULGARIAN GOVERNMENT CERT FUNCTIONS SERVICE STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

15 15 Unified Environment for Exchange of Electronic Documents Disaster Recovery Centers Register of Standards Polygon Environment for Tests and Trials Monitoring Unit Register of Certified Systems Information Security Database Portal Standards Council Information Security Council Gov- PKI INTERACTION OF GOV-CERT WITH THE OTHER UNITS IN THE FIELD OF INFORMATION SECURITY STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

16 16 Expert-advisory Activity: elaboration of normative acts ; selection of standards ; analyses, recommendations, etc. Administrative Unit: carrying out of state policy ; administering; organisation of events; contacts with other administrations. Operational Unit: operation of information systems; data administering, etc. ALLOCATION OF SAITC ACTIVITIES RELATED TO THE INFORMATION SECURITY STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

17 17 4.2 Existing co-operation (ITU):   ITU National cybersecurity/CIIP Self-Assessment Toolkit (main results)   ITU Regional cybersecurity Forum for Europe and CIS, 7-9 Oct, Sofia 4.3 Anticipated co-operation (IMPACT Initiative) MORE ACHIEVEMENTS SO FAR AND BEYOND… STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

18 18  The information security measures can be realized at two levels: 1)Central Body Level (NECN, Gov-CERT):  establishment of Unified Environment for Secure Exchange of Electronic Documents (SEED)  Implementation of a National e-Governance Data Model for public administration through centrally managed registers for unified primary metadata  establishment of Central Unit for Monitoring of Network and Information Security 2)Administrative Body Level  specific certification of administrative information systems and networks MORE KEY ELEMENTS OF THE BULGARIAN GOVERNMENT NIS POLICY STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

19 19 NATIONAL ADMINISTRATIVE DATA MODEL Register of the Registers and Data Register of the Information Objects Register of the Electronic Services Register of Accredited Persons and Certified Systems Register of the Unified Definitions of the Services National Nomenclature of Documents National Nomenclature of Records Register of Standards NORMATIVE TEXTS STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

20 20  International Information Infrastructure Protection:  Bulgaria could be designated as an ITU Cybersecurity Centre (part of IMPACT Initiative) to promote cyber security principles and culture, both nationally and in the South-East European region (grounds for its establishment);  The Centre could foster co-ordination and training activities in the field of cyber crime and provide experts for consulting governments on the last trends and potential threats, cyber security technology, policies and strategies.  Development of a National Cybersecurity Strategy:  Prevention=Public;  Protection=Private;  Prosecution=Partnership;  Response=Relationship. OUR ULTIMATE GOAL STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

21 21 “There are some things where the government is absolutely inevitable, which we can not get along without comprehensive state action. But there are many things – producing consumer goods, producing a wide range of entertainment, producing a wide level of cultural activity – where the market system, which independent activity is also important, so I react pragmatically. Where the market works, I am for that. Where the government is necessary, I am for that. I’m in favour of whatever works in the particular case”. by John Kenneth Galbraith THE WAY FORWARD STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS

22 22 THANK YOU FOR YOUR ATTENTION! STATE AGENCY FOR INFORMATION TECHNOLOGY AND COMMUNICATIONS http://www.daits.government.bg/

Download ppt "“Premio Ettore Majorana – Erice – Scienza per la Pace”, Pontifical Academy of Sciences, Vatican, 17 December 2008 DR. PLAMEN VATCHKOV Chairman of SAITC."

Similar presentations

STRENGTHENING COOPERATION ON CYBER SECURITY WITHIN THE ASEAN REGION

STRENGTHENING COOPERATION ON CYBER SECURITY WITHIN THE ASEAN REGION
Philippine Cybercrime Efforts

Philippine Cybercrime Efforts
Critical Infrastructure Protection Policy Priorities Sara Pinheiro European Commission DG Home Affairs.

Critical Infrastructure Protection Policy Priorities Sara Pinheiro European Commission DG Home Affairs.
International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.

International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.
International Telecommunication Union Developing a Cybersecurity Strategy that Supports National Policy Goals “Regional Arab Forum on Cybersecurity,” Giza.

International Telecommunication Union Developing a Cybersecurity Strategy that Supports National Policy Goals “Regional Arab Forum on Cybersecurity,” Giza.
Eneken Tikk // EST. Importance of Legal Framework  Law takes the principle of territoriality as point of departure;  Cyber security tools and targets.

Eneken Tikk // EST. Importance of Legal Framework  Law takes the principle of territoriality as point of departure;  Cyber security tools and targets.
Speaker: Tamar Shapatava

Speaker: Tamar Shapatava
Case of Serbia: Relations between EU integration process and judiciry reform Dušan Brajković Between Transformation and Integration – South-East Europe’s.

Case of Serbia: Relations between EU integration process and judiciry reform Dušan Brajković Between Transformation and Integration – South-East Europe’s.
Global Cyber Security Capacity Maturity Model - CMM WSIS Forum 2015 – Geneva Dr Maria Bada 25/05/2015.

Global Cyber Security Capacity Maturity Model - CMM WSIS Forum 2015 – Geneva Dr Maria Bada 25/05/2015.
Strategy and Policy Unit: Current Activities and Future Tasks

Strategy and Policy Unit: Current Activities and Future Tasks
National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.

National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.
James Ennis, Department of State, USA ITU-D Question 22/1 Rapporteur.

James Ennis, Department of State, USA ITU-D Question 22/1 Rapporteur.
 Road Safety the European Union Policy Carla Hess European Commission, Directorate General for Mobility & Transport Road.

 Road Safety the European Union Policy Carla Hess European Commission, Directorate General for Mobility & Transport Road.
1 Group-IB: Digital investigations and forensic Ilya Sachkov Group-IB

1 Group-IB: Digital investigations and forensic Ilya Sachkov Group-IB
Programming of International Development Assistance Donor Meeting Agency for Human and Minority Rights September 27, 2007.

Programming of International Development Assistance Donor Meeting Agency for Human and Minority Rights September 27, 2007.
Self-Assessment and Formulation of a National Cyber security/ciip Strategy: culture of security.

Self-Assessment and Formulation of a National Cyber security/ciip Strategy: culture of security.
Www.bmi.bund.de International Cyber Warfare and Security Conference Cyber Defence Germany's Analysis of Global Threats 19th November 2013, Ankara.

International Cyber Warfare and Security Conference Cyber Defence Germany's Analysis of Global Threats 19th November 2013, Ankara.
Towards a European network for digital preservation Ideas for a proposal Mariella Guercio, University of Urbino.

Towards a European network for digital preservation Ideas for a proposal Mariella Guercio, University of Urbino.
A National approach to Cyber security/CIIP: Raising awareness.

A National approach to Cyber security/CIIP: Raising awareness.
The new cyber threats in 2013 – the hungarian approach Mr. Mihály Zala, Major-general President of National Security Authority of Hungary.

The new cyber threats in 2013 – the hungarian approach Mr. Mihály Zala, Major-general President of National Security Authority of Hungary.

Similar presentations

Ads by Google