APNIC Senior Security Specialist Adli Wahid gives an update on APNIC's security engagement activities at APEC TEL 62, held online from 3 to 4 March 2021.

1. 1
APNIC Security Engagement Activities
Adli Wahid
Senior Internet Security Specialist, APNIC
TEL 62 SPSG
March 2021

2. 2
2
APNIC
• Regional Internet Registry for the Asia Pacific region
• Delegates IP addresses (v4/v6), Autonomous System
Numbers (ASNs) and provides services such whois, RDAP
and RPKI
• Members in 56 economies across the region
• Other areas of engagements - Internet development,
community support, security, Internet governance
• Based in Brisbane, Australia
• https://www.apnic.net

3. 3
3
Security Engagements Activities
• Moved online because of the pandemic
• Summary (2020-2021)
– Dedicated security track at APRICOT & APNIC
conferences
– Support / sponsorship for security conferences
– Training / tutorials for various communities
– Presentation at various events
– Support for CERT/CSIRTs in various capacities

4. 4
4
Themes of Discussions
• Security is broad and specific
– Tied to roles and responsibilities
– Maturity of the security ecosystem
• Networking from Home virtual event (2020)
– Four events for Asia Pacific sub-regions
• 2020 highlights
– Cyber resilience
– Data security
– Security monitoring + threat intelligence
• Log Management
– Cyber security hygiene (authentication, patching, and so forth)
– Incident response – detection and collaboration

5. 5
5
On-going Initiatives
• Routing (BGP) Security – RPKI
– Ultimately to prevent routing problems – that is, BGP hijack
– Route Origin Validation
• Create ROAs (certificates) for your network prefix
• Routing decisions/policies based on validation of origin-AS (Autonomous Systems)
– Lots of activities
• Creating ROAs for network operators
• Providing service for validation
• Software to support infrastructure for deployment
• Campaigns for awareness and tutorials/workshops/webinars
- https://www.apnic.net/community/security/resource-certification/

6. 6
6
Ongoing Initiatives
• APNIC Community Honeynet Project
– Distributed honeypots across the region
– Education / training
– Analysis and Sharing:
• https://feeds.honeynet.asia and via MISP Threat Sharing
Platform
– Partnership with ISPs/Telcos/Research Education
Networks/Law Enforcement Agencies
• DASH
– Portal for APNIC Members
– Understand “Autonomous System Health”
– Data feeds from the Honeynet Project
– Allows outreach to network / security engineers
– Request for ‘insights’
– https://dash.apnic.net (APNIC Members only)

7. 7
7
APNIC 2020 Survey
• Published in Sept 2020
– https://www.apnic.net/commu
nity/participate/member-
feedback/
• Interesting perspectives
on operations and
challenges including
security

8. 8
8
Moving Forward
• Plenty of opportunity to engage, assist and
create awareness
• Focus on multistakeholder, collaboration,
sharing and technical capacity building
• Conference for network operators
– APRICOT 2021 conference https://2021.apricot.net/
– RPKI, v6 adoption, security, Internet governance
and APNIC Secretariat updates and so forth

9. 9
Thank You
Adli Wahid
adli@apnic.net