Presentation is loading. Please wait.

Presentation is loading. Please wait.

IT Security in Nepal: Issues and challenges Rajan R. Pant ITSERT-NP.

Published byWilliam Robbins Modified over 9 years ago

Similar presentations

Presentation on theme: "IT Security in Nepal: Issues and challenges Rajan R. Pant ITSERT-NP."— Presentation transcript:

1 IT Security in Nepal: Issues and challenges Rajan R. Pant ITSERT-NP

2 Good Morning Everybody 모두들 좋은 아침

3 Some Questions? Do you have free email account such as gmail, yahoo, outlook? Do you have more than one email? Do you have same password in all types of email and other web so that you need not to remember all passwords? Do you change password in every three months?

4 https://www.checkpoint.com/ThreatPortal/li vemap.htmlhttps://www.checkpoint.com/ThreatPortal/li vemap.html

5 Index Infrastructure Status Issues and Challenges Lesson Learned ITSERT-NP and its Role

6 Infrastructure Internet including e-mail to 43 operators Internet with e-mail in Rural Area 5 Limited Mobility Services 83 Fixed Telephone services to NTC GSM cellular Mobile at present to NTC and Ncell WLL operator is UTL VSAT users to 27 VSAT user (Rural Area) 10

7 Communication Infrastructure

8 Internet Subscribers ServicesSubscribers Dialup (PSTN+ISDN) Subscribers5,759 Wireless Subscribers47,379 Cable / Fiber Subscribers67,058 ADSL1,32,768 GPRS,EDGE,WCDMA1,09,70,429 CDMA 1X, EVDO1,98,430 Wi-MAX12,816 VSAT based Internet13 TOATAL1,14,39,249 Internet Penetration (%)43.17 Source: nta.gov.np

9 Legal Infrastructure Banking Offence and Punishment Act, 2064 Banks and Financial Institutions Act, 2063 Nepal Rastra Bank Act, 2058 The Companies Act, 2063 Contract Act, 2056 The Electronic Transactions Act, 2063 Nepal GEA Security Architecture

10 Institutional Mechanism Department of IT Office of Controller of Certification Nepal Telecom Authority Nepal Rastra Bank IT Crime Cell of Nepal Police ITSERT-NP

11 Cyber Crime Reported YearNos. 2012 – 201334 2013 – 201451 2014 – 201565 TOTAL150 Source: Presentation at NTA program by Nepal Police on 2 nd Sep. 2015

12 Nature of Cyber Crime E-Mail Threat Mostly Facebook defacement Unreported ATM and Internet Banking Fraud – 3 E-mail theft Data hacks Online fraud and impersonating profiles

13 Status cyber security in Nepal are still not able to address the growing security breach concerns of the cyber users. it is important to know that the information regarding issues and concerns on the existing cyber security policies in understanding the inability to ensure minimal risks of cyber security breach in Nepal, as reflected in the country’s sensitive risk of cybercrimes on the rise, despite their high concern for security and privacy.

14 In your Opinion What could be

15 Challenges lack of technical knowledge in cyber security Lack of Information Security Policy No proper Cyber Law Policy maker does not feel importance Lack of National Cyber Security Strategy

16 Challenges Level of Trust Interdepartmental coordination Information Security Strategy Awareness in General users Government process

17 Government vs. Private

18 Recommendation Quantum of punishment for a majority of cyber crimes The majority of cyber crimes should be non-bail offences Data protection regime in the law required Amendment of law to match new technologies

19 Provision for regulating cloud based solutions Address different types of attacks such as time theft, denial of service attack, virus attack, identity thefts, cheating by personating etc. Provision of regulating online trading such as commodity market

20 Provision of punishment for offence of publishing sexually explicit content Specific provision of punishment for child pornography Define the Electronic Service Delivery Rules Regulate the social networking within country

21 Compulsory to publish terms of use and privacy policy on websites Establish national security emergency response team in the country like CERT/CSIRT community. Compensation for failure to protect data causing wrongful loss or wrongful gain to any person

22 Third party information security audit of Data Center, Software, Websites and information assets should be mandatory. Quality assurance of software and hardware Policy for handling the domain name disputes

23 Infrastructure Security Lesson learned from recent earthquake.

24 ITSERT-NP Established in 2014, non-profitable, non-political, NGO Voice of all for Information Security Working for Incident handling and awareness Organizing annual Information Security conference from 2015 In the process of availing APCERT membership Planning to establish forensic lab

25 ITSERT-NP Role ITSERT-NP will reduce the risk factor Information Security Audit IT Security programs for general public to aware about it. Focusing in School and Colleges

26 Information Security Education Classes for School/College Students Training for Teachers Guidelines for Parents Warnings for Users

27 Some Suggestions Change Password in every three months Do not put same password in different accounts Do not open attachment having.txt or saying see my photo Do not click on Reply button while replying to email for important matters Do not run internet banking in public wifi

28 Secure You Secure your Nation Thank you 감사합니다 Any ? rajanpant@outlook.com

Download ppt "IT Security in Nepal: Issues and challenges Rajan R. Pant ITSERT-NP."

Similar presentations

Philippine Cybercrime Efforts

Philippine Cybercrime Efforts
ITU Regional Seminar on E-commerce Bucharest, Romania 14-17 May 2002 National E-commerce Strategies for Development Dr. Susanne Teltscher United Nations.

ITU Regional Seminar on E-commerce Bucharest, Romania May 2002 National E-commerce Strategies for Development Dr. Susanne Teltscher United Nations.
Jennifer Perry. We help victims of e-crime and other online incidents – Web based service – Providing practical, plain language advice – No-nonsense advice.

Jennifer Perry. We help victims of e-crime and other online incidents – Web based service – Providing practical, plain language advice – No-nonsense advice.
Safeguarding Data to Ensure Effective Data Use Paige Kowalski |Director| State Policy & Advocacy July 2014.

Safeguarding Data to Ensure Effective Data Use Paige Kowalski |Director| State Policy & Advocacy July 2014.
Cyber Security and Data Protection Presented by Mrs Drudeisha Madhub (Data Protection Commissioner ) Tel:+230 201 36 04 Helpdesk:+230.

Cyber Security and Data Protection Presented by Mrs Drudeisha Madhub (Data Protection Commissioner ) Tel: Helpdesk:+230.
Breaking Trust On The Internet

Breaking Trust On The Internet
© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.

© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.
David A. Brown Chief Information Security Officer State of Ohio

David A. Brown Chief Information Security Officer State of Ohio
Mobile Technology & Cyber Threats Promoting E-Commerce in Ghana Ruby Saakor Tetteh Ministry of Trade & Industry, Ghana Sixth Annual African Dialogue Consumer.

Mobile Technology & Cyber Threats Promoting E-Commerce in Ghana Ruby Saakor Tetteh Ministry of Trade & Industry, Ghana Sixth Annual African Dialogue Consumer.
Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL.

Forensic and Investigative Accounting Chapter 15 Cybercrime Management: Legal Issues © 2007 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL.
1 6 - Outsourcing Outsourcing. © Robert G Parker – UW-CISA 2010 Dealing with issues when a portion or all of the provision of technology services is performed.

1 6 - Outsourcing Outsourcing. © Robert G Parker – UW-CISA 2010 Dealing with issues when a portion or all of the provision of technology services is performed.
E-Security Background IT Infrastructure in Sikkim Current Status of Cyber Security& Cyber Crime in SIkkimCurrent Status of Cyber Security& Cyber Crime.

E-Security Background IT Infrastructure in Sikkim Current Status of Cyber Security& Cyber Crime in SIkkimCurrent Status of Cyber Security& Cyber Crime.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Mobile Technology And Cyber Security K. N. ATUAHENE Director, Domestic Trade and Distribution Ministry of Trade and Industry.

Mobile Technology And Cyber Security K. N. ATUAHENE Director, Domestic Trade and Distribution Ministry of Trade and Industry.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
1 McGraw-Hill/Irwin Copyright © 2004, The McGraw-Hill Companies, Inc. All rights reserved. Ethical Challenges Ethics Principles of right and wrong that.

1 McGraw-Hill/Irwin Copyright © 2004, The McGraw-Hill Companies, Inc. All rights reserved. Ethical Challenges Ethics Principles of right and wrong that.
Geneva, Switzerland, 15-16 September 2014 Challenges and Successes in the Zambian ICT Security Sector Mainza Siamubayi Handongwe, Student Research Fellow,

Geneva, Switzerland, September 2014 Challenges and Successes in the Zambian ICT Security Sector Mainza Siamubayi Handongwe, Student Research Fellow,
(Geneva, Switzerland, September 2014)

(Geneva, Switzerland, September 2014)
National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.

National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.

Similar presentations

Ads by Google