MIC s Efforts on Cybersecurity Human Resource Development

Transcription

1 ASEAN-Japan Cyber Security International Symposium MIC s Efforts on Cybersecurity Human Resource Development October 9 th 2014 Yuji NAKAMURA Director for the ICT Security Strategy, Ministry of Internal Affairs and Communications (MIC), Japan

2 Today s Agenda 2 Overview of MIC s Information Security Policy MIC s efforts for enhancing cybersecurity capacity CYDER Project Japan-ASEAN Information Security Workshop (for ISPs)

3 5 Concept of MIC s Information Security Policy 3 1.Establishment of secure network environment (1)Sharing information with network operators (2)Strengthening public-private partnership to counter cyber-attacks (3)Organizing Information Security Advisory Board meeting (since March 2013) (4)Organizing conferences for proper countermeasures against cyber-attacks by 2.Assistance for information security measures (1)Conducting ACTIVE from FY2013 to FY 2017 (2)Conducting CYDER from FY2013 to FY 2017 (3)Sharing Information through Information Security Website for General Users 3.Promotion of developing technology (1)Conducting PRACTICE from FY2011 to FY2015 (2)R&D for analysis and detection of cyber-attacks from FY2013 in 5 years 4.Promotion of international collaboration Promoting international collaboration by sharing measures for information security. e.g. the Japan- ASEAN Information security workshop 5.Using and distributing personal data properly Promoting proper usage/distribution of personal data (which means information of individuals) taking into account protection of privacy, etc.

4 MIC s Ongoing Projects 4 Malware infection of individual computers Among individual Internet users, fraud such as unjust remittance of funds has appeared by way of malware infections through websites. Advanced Persistent Threat Leaking of classified information caused by sophisticated cyberattacks such as Advanced Persistent Threat (APT). Malicious attacks (e.g. DDoS) caused by Malwares Malicious activities such as DDoS etc. which are caused by Malwares have been frequently observed and have affected Japanese business. ACTIVE (Advanced Cyber Threats response InitiatiVE) CYDER (CYber Defense Exercise with Recurrence) PRACTICE (Proactive Response Against Cyberattacks Through International Collaborative Exchange) Comprehensive countermeasures for malware infections such as prevention of access to malware propagation websites by collaborating with ISPs and so on. Started in November Understanding of current status by analyzing APT, considering defensive models for APT and capacity building through practical defensive exercises participated in by the public and private sectors. Started in September R&D and field trials for grasping symptoms of attacks and acting quick response to cyber-attacks by deep analysis and constructing networks through international collaboration to exchange cyber-security information. Started in August 2011.

5 CYDER(CYber Defense Exercise with Recurrence) 5 Strengthen ability of LAN administrators in government agencies, large enterprises to tackle Advanced Persistent Threat. Develop a defensive model through experiences obtained by conducting CYDER repeatedly. Features Large scale emulated network of a thousand staff level organizations. Practical cyber exercise based on real Advanced Persistent Threat. 293 people from 33 organizations such as national government agencies(e.g., MOD, NISC, MOFA, MOJ), incorporated administrative agencies and private businesses (critical infrastructure sectors), etc. participated in groups of three or four people through ten CYDER session. Staff room Large scale emulated LAN LAN Staff to imitate attacker supporting imitation attack Secret Staff supporting operation Firewal l DC File AP DB DMZ server DNS Web Exercise venue Staff to imitate business operator or chief of participant supporting exercise Participants Participants Instructor and assistant

6 ASEAN-Japan Information Security Workshop (for ISPs) 6 1 st Jan, 2011, Tokyo 2 nd Mar, 2012, Tokyo 3 rd Feb, 2013, Bangkok 4 th Aug, 2013, Tokyo 5 th Oct, 2014, Manila The workshop aims to construct and enhance collaboration among ISPs by sharing information on cybersecurity threats and their countermeasures etc. Participated ISPs and ISP associations Telkom Indonesia(Id), PT Telkom Indonesia(Id), Asosiasi Penyelenggara Jasa Internet Indonesia /APJII(Id), Sky Telecom(La), Telekom Malaysia(My), TM net(my), Myanma Posts and Telecommunications(Mm), GLOBE(Ph), PLDT Philippine Long Distance Telecom Co.(Ph), True Move Company Limited(Th), Thai Internet Service Provider Association(Th), Information & Public relations Centre - VNPT(Vn), FPT Telecom(Vn), DST group(br), NTT Communications Corporation(J), KDDI Corporation(J), IIJ(J)

7 Thank you for your attention. Ministry of Internal Affairs and Communications (MIC)