APNIC, profile picture
Uploaded byAPNIC
PPTX, PDF1,380 views

Enhancing security incident response capabilities in the AP

The document outlines APNIC's role as a regional internet registry in enhancing security incident response capabilities across the Asia Pacific region. It emphasizes the importance of collaboration among various stakeholders, including national CERTs, network operators, and law enforcement, to effectively manage and respond to security incidents. Upcoming activities and initiatives aimed at training and capacity building are also highlighted, stressing the need for a flexible and scalable approach to addressing cybersecurity challenges.

Internet
Related topics:
Cyber-Security

Embed presentation

Download to read offline
Issue Date: Revision: Enhancing Security Incident Response Capabilities in the Asia Pacific Region 6th APT Cybersecurity Forum Adli Wahid Security Specialist, APNIC
Agenda 1. About APNIC 2. Enhancing Incident Response Capabilities 3. Recent and future activities 2
About APNIC 3
What is APNIC? • Regional Internet Registry (RIR) for the Asia Pacific region – Comprises 56 economies • Secretariat located in Brisbane, Australia – Currently employs around 70 staff • Not-for-profit, membership-based organization • Governed by the Executive Council (EC), who are elected by the Members 4
APNIC’s Vision: A global, open, stable, and secure Internet that serves the entire Asia Pacific community. How we achieve this: • Serving Members • Supporting the Asia Pacific Region • Collaborating with the Internet Community 5
Enhancing Incident Response Capabilities in the AP Region 6
Responding to Security Incidents 7 National Cyber Security Agency National CERT / CSIRTs Enterprise CERTs/CSIRTs End-Users Critical Infrastructure, Network Providers, Hosting, Cloud, Government, Financial Services, SMEs=
Network Operators / Service Providers • A key player in the Incident Response process • Availability is important – Critical Infrastructure (Internet Exchange) – Increasing becoming a target • Need to be aware of the (changing) threat landscape – Help increase resilience the infrastructure by applying best practices – Provide timely assistance & mitigation – Emerging Trends - IOTs – CERT/CSIRT of the last resort • Network Operators Groups (NOGs) – Local & Regional NOGs – APRICOT & APNIC Conference 8
Network Operators – Incident Response Relationship • Interdependent entities • Expectations – Resources are not misused or abused – Fast ‘take-downs’ or response – Share information (logs, billing etc) – Communicate with Users / Technical support – 24x7x365 • Frequently, at the receiving end 9 Network Operator End-Users Customers Security Response Community Law Enforcement
Incident Response Capabilities • Managing Security Incidents – Reduce impact of security incidents – Prevent security incident from occurring – Fixing actual vulnerabilities – Gain insights about emerging threats or incidents (ISACs, threat intel feeds) – Collaborate with other stakeholders (i.e. investigation, policy/strategy) • Managing Security Incident Response Teams – Establishing CSIRTs – Operationalizing CSIRTs – Having the right skill sets, knowledge and tools – Being part of the community – Mentoring 10
APNIC’s Approach • Capacity development – Internet infrastructure – Cyber security* • Strategic Partnership – Various stakeholders – Regional & global – Shared goals 11
Security Outreach 12 Craig Ng Promoting security best practices in the APNIC community NOGs, CSIRTS and LEA events PK, CN, HK, KR, JP, PH SG, MY, ID, AU, TW Collaboration with JICA and KISA to deliver regional CERT training Geoff Huston member of ICANN SSAC Adli Wahid member of FIRST Board MoU with APCERT Interpol Global Cyber Crime Group Adli Wahid www.apnic.net/security
CSIRT Best Practice Forum • IGF 2014 & 2015 – Best Practice Forum on Establishing and Supporting Computer Security Incident Response Teams (CSIRT) for Internet Security • Multistakeholder approach • Addresses key concerns of establishing & setting up a CSIRTs – Key success factors – Costs & capacity building – Stakeholder engagement – Opportunities & challenges • Call for Comments – http://intgovforum.org/cms/best-practice-forums/2- establishing-and-supporting-csirts 13
Upcoming Activities • Support for regional activities – FIRST & IDSIRTII TC (October) – FIRST & KRCERT/CC TC (November) – Interpol Global Cyber Crime Meeting (December) – APRICOT 2016 in Auckland (February) • eLearning & Training – https://training.apnic.net • Follow us for the latest updates – Blog https://blog.apnic.net – Twitter @apnic
Resource Public Key Infrastructure (RPKI) 15 RPKI presentations to NOGs and conferences ‘Ready to ROA’ Campaign – hands-on sessions to help Members create ROAs Shirts, stickers, web content to promote campaign Regional RPKI adoption has more than doubled in past year - 0.82% to 1.92% and rising www.apnic.net/roa • 10 face-to-face and eLearning RPKI training courses delivered • Offline simulation of production system • Create and revoke ROAs, observe changes to routing state in lab
Internet Operational Research Grants 16 New fund supporting the Internet research community in the Asia Pacific Research aiming to improve availability, reliability, and security of the Internet in the Asia Pacific Network measurement and analysis IPv6 deployment BGP Routing Network Security
Conclusion • Capacity development is fundamental & critical • Approach must be flexible and scalable • Plenty of challenges & opportunities • Let’s collaborate! 17
Thank You Adli Wahid www.apnic.net adli@apnic.net 18

More Related Content

PPTX
Resource Public Key Infrastructure presentation, Mynog5
byAPNIC
 
PPTX
Cybersecurity response in the Pacific
byAPNIC
 
PDF
APNIC Update, APEC TEL 54
byAPNIC
 
PPTX
CNCERT Conference 2017: Capacity development in the Asia Pacific
byAPNIC
 
PPTX
IGFA 2017: Introduction to APNIC and Regional Internet Registries
byAPNIC
 
PPTX
IPv6 capacity development in developing economies
byAPNIC
 
PDF
Apnic Update - SANOG 30
byAPNIC
 
PDF
APNIC Update - MMNOG 2017
byAPNIC
 
Resource Public Key Infrastructure presentation, Mynog5
byAPNIC
 
Cybersecurity response in the Pacific
byAPNIC
 
APNIC Update, APEC TEL 54
byAPNIC
 
CNCERT Conference 2017: Capacity development in the Asia Pacific
byAPNIC
 
IGFA 2017: Introduction to APNIC and Regional Internet Registries
byAPNIC
 
IPv6 capacity development in developing economies
byAPNIC
 
Apnic Update - SANOG 30
byAPNIC
 
APNIC Update - MMNOG 2017
byAPNIC
 

What's hot

PPTX
An introduction to APNIC
byAPNIC
 
PDF
NTT-CERT Activities by Yoshiki Sugiura [APRICOT 2015]
byAPNIC
 
PPTX
Government Policy and IPv6 Adoption
byAPNIC
 
PPTX
IPv6 Adoption by ASEAN Government Agencies
byAPNIC
 
PDF
Apnic update-btnog1-sc
byAPNIC
 
PPTX
PNG IXP Inauguration: APNIC Update
byAPNIC
 
PPTX
IDNIC OPM 2017: APNIC Update
byAPNIC
 
PDF
WHOIS Database for Incident Response & Handling
byAPNIC
 
PPTX
APNIC Update - PacNOG20
byAPNIC
 
PPTX
APNIC Update, APTLD 70
byAPNIC
 
PPTX
AFRINIC 26/AIS 2017: APNIC Update
byAPNIC
 
PDF
AFRINIC 24 - APNIC Update
byRobbie Mitchell
 
PDF
Internet number resources - what's new?
byAPNIC
 
PDF
ARM 7: ROA session
byAPNIC
 
PDF
Collective responsibility for security and resilience of the global routing s...
byAPNIC
 
PPTX
APNIC Update, NPNOG 0.5
byAPNIC
 
PPTX
IPv6 in Vietnam + APNIC Update
byAPNIC
 
PPTX
MMNOG: Internet infrastructure comparisons in the Asia Pacific
byAPNIC
 
PPTX
Global IPv6 Summit Presentation - Global Deployment or Digital Divide
byAPNIC
 
PDF
IPv6 Update
bySiena Perry
 
An introduction to APNIC
byAPNIC
 
NTT-CERT Activities by Yoshiki Sugiura [APRICOT 2015]
byAPNIC
 
Government Policy and IPv6 Adoption
byAPNIC
 
IPv6 Adoption by ASEAN Government Agencies
byAPNIC
 
Apnic update-btnog1-sc
byAPNIC
 
PNG IXP Inauguration: APNIC Update
byAPNIC
 
IDNIC OPM 2017: APNIC Update
byAPNIC
 
WHOIS Database for Incident Response & Handling
byAPNIC
 
APNIC Update - PacNOG20
byAPNIC
 
APNIC Update, APTLD 70
byAPNIC
 
AFRINIC 26/AIS 2017: APNIC Update
byAPNIC
 
AFRINIC 24 - APNIC Update
byRobbie Mitchell
 
Internet number resources - what's new?
byAPNIC
 
ARM 7: ROA session
byAPNIC
 
Collective responsibility for security and resilience of the global routing s...
byAPNIC
 
APNIC Update, NPNOG 0.5
byAPNIC
 
IPv6 in Vietnam + APNIC Update
byAPNIC
 
MMNOG: Internet infrastructure comparisons in the Asia Pacific
byAPNIC
 
Global IPv6 Summit Presentation - Global Deployment or Digital Divide
byAPNIC
 
IPv6 Update
bySiena Perry
 

Viewers also liked

PDF
APNIC Outreach Activities in Cyber Security
byAPNIC
 
PDF
APNIC's role in stability and security - 4th APT Cybersecurity Forum
byAPNIC
 
PDF
Introduction to CSIRTs
byAPNIC
 
PPSX
Cyber Threat Intelligence: What do we Want? The Incident Response and Technol...
byAlbert Hui
 
PDF
Ht seminar uniten-cyber security threat landscape
byHaris Tahir
 
PPTX
Tools and methods used in cybercrime
bypatelripal99
 
PPTX
International Collaboration for Regional Cybersecurity Risk, by Yurie Ito [AP...
byAPNIC
 
PPTX
Whois - Addressing the Asia Pacifc
byAPNIC
 
PDF
Pactera - Cloud, Application, Cyber Security Trend 2016
byKyle Lai
 
PDF
Cyberthreat Defense Report 2017 by Impreva
byGhader Ahmadi
 
PDF
Outlook Briefing 2016: Cyber Security
byMastel Indonesia
 
PDF
Cyber Security Landscape and Systems Resiliency – Challenges & Priorities - T...
byKnowledge Group
 
PDF
2016 Cybersecurity Predictions for Asia Pacific from Palo Alto Networks VP, C...
byPaloAltoNetworks
 
APNIC Outreach Activities in Cyber Security
byAPNIC
 
APNIC's role in stability and security - 4th APT Cybersecurity Forum
byAPNIC
 
Introduction to CSIRTs
byAPNIC
 
Cyber Threat Intelligence: What do we Want? The Incident Response and Technol...
byAlbert Hui
 
Ht seminar uniten-cyber security threat landscape
byHaris Tahir
 
Tools and methods used in cybercrime
bypatelripal99
 
International Collaboration for Regional Cybersecurity Risk, by Yurie Ito [AP...
byAPNIC
 
Whois - Addressing the Asia Pacifc
byAPNIC
 
Pactera - Cloud, Application, Cyber Security Trend 2016
byKyle Lai
 
Cyberthreat Defense Report 2017 by Impreva
byGhader Ahmadi
 
Outlook Briefing 2016: Cyber Security
byMastel Indonesia
 
Cyber Security Landscape and Systems Resiliency – Challenges & Priorities - T...
byKnowledge Group
 
2016 Cybersecurity Predictions for Asia Pacific from Palo Alto Networks VP, C...
byPaloAltoNetworks
 

Similar to Enhancing security incident response capabilities in the AP

PPTX
Cyber Security Regional Forum: APNIC's cybersecurity work in the Pacific
byAPNIC
 
PDF
APCERT Updates
byAPNIC
 
PDF
APAN 44: Security outreach at APNIC
byAPNIC
 
PDF
APEC TEL 62: APNIC Security Engagement Activities
byAPNIC
 
PDF
Cybersecurity Opportunities Challenges APNIC
byAPNIC
 
PDF
APNIC Updates presented by Paul Wilson at CaribNOG 27
byAPNIC
 
PDF
APNIC IRM Tutorial, by Sheryl Hermoso [APRICOT 2015]
byAPNIC
 
PDF
Internet Resiliency and Security in the APAC Region: APNIC Perspective
byAPNIC
 
PPTX
Cyber Security Week 2015: Get involved and contribute
byAPNIC
 
PPTX
APNIC Policy Webinar
bySiena Perry
 
PPTX
Introducing APNIC
byAPNIC
 
PDF
APNIC Secretariat Report
byAPNIC
 
PPTX
Internet Week Japan 2017: Security@APNIC
byAPNIC
 
PPTX
AIS'19/AFRINIC 30: APNIC Update
byAPNIC
 
PDF
APNIC Secretariat Report
byAPNIC
 
PPTX
PacNOG 23: APNIC Regional Update
byAPNIC
 
PDF
AFRINIC 29: APNIC Update
byAPNIC
 
PDF
ARIN 41: APNIC Update
byAPNIC
 
PDF
CNCERT International Partnership in Emergency Response Conference: Cooperatio...
byAPNIC
 
PDF
LACNIC 29: APNIC Update
byAPNIC
 
Cyber Security Regional Forum: APNIC's cybersecurity work in the Pacific
byAPNIC
 
APCERT Updates
byAPNIC
 
APAN 44: Security outreach at APNIC
byAPNIC
 
APEC TEL 62: APNIC Security Engagement Activities
byAPNIC
 
Cybersecurity Opportunities Challenges APNIC
byAPNIC
 
APNIC Updates presented by Paul Wilson at CaribNOG 27
byAPNIC
 
APNIC IRM Tutorial, by Sheryl Hermoso [APRICOT 2015]
byAPNIC
 
Internet Resiliency and Security in the APAC Region: APNIC Perspective
byAPNIC
 
Cyber Security Week 2015: Get involved and contribute
byAPNIC
 
APNIC Policy Webinar
bySiena Perry
 
Introducing APNIC
byAPNIC
 
APNIC Secretariat Report
byAPNIC
 
Internet Week Japan 2017: Security@APNIC
byAPNIC
 
AIS'19/AFRINIC 30: APNIC Update
byAPNIC
 
APNIC Secretariat Report
byAPNIC
 
PacNOG 23: APNIC Regional Update
byAPNIC
 
AFRINIC 29: APNIC Update
byAPNIC
 
ARIN 41: APNIC Update
byAPNIC
 
CNCERT International Partnership in Emergency Response Conference: Cooperatio...
byAPNIC
 
LACNIC 29: APNIC Update
byAPNIC
 

More from APNIC

PPTX
APNIC Report, presented at APAN 60 by Thy Boskovic
byAPNIC
 
PDF
APNIC Update, presented at PHNOG 2025 by Shane Hermoso
byAPNIC
 
PDF
APNIC's Role in the Pacific Islands, presented at Pacific IGF 2205
byAPNIC
 
PDF
IPv6 Deployment and Best Practices, presented by Makito Lay
byAPNIC
 
PDF
Global Networking Trends, presented at the India ISP Conclave 2025
byAPNIC
 
PDF
The Internet - By the numbers, presented at npNOG 11
byAPNIC
 
PDF
The Internet -By the Numbers, Sri Lanka Edition
byAPNIC
 
PDF
ICP -2 Review – What It Is, and How to Participate and Provide Your Feedback
byAPNIC
 
PDF
APNIC Update - Global Synergy among the RIRs: Connecting the Regions
byAPNIC
 
PDF
Cleaning up your RPKI invalids, presented at PacNOG 35
byAPNIC
 
PDF
Triggering QUIC, presented by Geoff Huston at IETF 123
byAPNIC
 
PDF
DNSSEC Made Easy, presented at PHNOG 2025
byAPNIC
 
PDF
DDoS in India, presented at INNOG 8 by Dave Phelan
byAPNIC
 
PDF
RPKI Status Update, presented by Makito Lay at IDNOG 10
byAPNIC
 
PDF
BGP Security Best Practices that Matter, presented at PHNOG 2025
byAPNIC
 
PDF
Make DDoS expensive for the threat actors
byAPNIC
 
PDF
DDos Mitigation Strategie, presented at bdNOG 19
byAPNIC
 
PDF
Transmission Control Protocol (TCP) and Starlink
byAPNIC
 
PDF
Fast Reroute in SR-MPLS, presented at bdNOG 19
byAPNIC
 
PDF
Measuring Starlink Protocol Performance, presented at LACNIC 43
byAPNIC
 
APNIC Report, presented at APAN 60 by Thy Boskovic
byAPNIC
 
APNIC Update, presented at PHNOG 2025 by Shane Hermoso
byAPNIC
 
APNIC's Role in the Pacific Islands, presented at Pacific IGF 2205
byAPNIC
 
IPv6 Deployment and Best Practices, presented by Makito Lay
byAPNIC
 
Global Networking Trends, presented at the India ISP Conclave 2025
byAPNIC
 
The Internet - By the numbers, presented at npNOG 11
byAPNIC
 
The Internet -By the Numbers, Sri Lanka Edition
byAPNIC
 
ICP -2 Review – What It Is, and How to Participate and Provide Your Feedback
byAPNIC
 
APNIC Update - Global Synergy among the RIRs: Connecting the Regions
byAPNIC
 
Cleaning up your RPKI invalids, presented at PacNOG 35
byAPNIC
 
Triggering QUIC, presented by Geoff Huston at IETF 123
byAPNIC
 
DNSSEC Made Easy, presented at PHNOG 2025
byAPNIC
 
DDoS in India, presented at INNOG 8 by Dave Phelan
byAPNIC
 
RPKI Status Update, presented by Makito Lay at IDNOG 10
byAPNIC
 
BGP Security Best Practices that Matter, presented at PHNOG 2025
byAPNIC
 
Make DDoS expensive for the threat actors
byAPNIC
 
DDos Mitigation Strategie, presented at bdNOG 19
byAPNIC
 
Transmission Control Protocol (TCP) and Starlink
byAPNIC
 
Fast Reroute in SR-MPLS, presented at bdNOG 19
byAPNIC
 
Measuring Starlink Protocol Performance, presented at LACNIC 43
byAPNIC
 

Recently uploaded

PDF
ARTIFICIAL INTELLIGENCE DEVELOPMENT SERVICE
bydavidjohansen1597
 
PDF
WShell Gameplay and Games of Games of Games
byzramirezmtz9
 
PPTX
mc l2 Overview of Computer and Web-Technology.pptx
byavanikharde
 
PPTX
Bibhav Singh.pptx it's very useful for us it's in very good and very nice
byabhishekjaiswal5th33
 
PPT
html-forms in web development-courseICT.
bymadz33
 
PPTX
Abhishek Jaiswal.ppt.pptx for you it is very useful for me and I am sharing w...
byabhishekjaiswal5th33
 
PDF
Top 5 Snapchat Tracker Apps for Safe and Responsible Monitoring
byMichael Carter
 
PPTX
Computer Networks 01[1 using all terms].pptx
bywaqasahmedbhatti633
 
DOCX
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
PDF
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
PDF
tokiohotellistening.pdf for tokiohotelfans
byrafaelgombos1234
 
PDF
classification of elements and periodicity.pdf
byaryanshreya2010
 
PPT
Lecture_3 Network Securityyyeyeyyeeyyeywy.ppt
bysawsan202
 
PDF
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
PPTX
Types of Cryptograph Symmetric Ceaser cipher and also about Assymetric
byhamzaabdulqadeer11
 
PPT
Memory Organization In Assembly Language
byumairmuhammad0409
 
PPTX
COĞRAFYA ödevi 70 sayfa güzeldir hayırlı olsun
bydtilter
 
PPTX
PRITHVI theater, A true artist. Newzfeaturez.pptx
bysc05digital
 
PDF
Design For Test - Getting Test Automation value from Design Expressions.
byDavid Harrison
 
PDF
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
ARTIFICIAL INTELLIGENCE DEVELOPMENT SERVICE
bydavidjohansen1597
 
WShell Gameplay and Games of Games of Games
byzramirezmtz9
 
mc l2 Overview of Computer and Web-Technology.pptx
byavanikharde
 
Bibhav Singh.pptx it's very useful for us it's in very good and very nice
byabhishekjaiswal5th33
 
html-forms in web development-courseICT.
bymadz33
 
Abhishek Jaiswal.ppt.pptx for you it is very useful for me and I am sharing w...
byabhishekjaiswal5th33
 
Top 5 Snapchat Tracker Apps for Safe and Responsible Monitoring
byMichael Carter
 
Computer Networks 01[1 using all terms].pptx
bywaqasahmedbhatti633
 
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
tokiohotellistening.pdf for tokiohotelfans
byrafaelgombos1234
 
classification of elements and periodicity.pdf
byaryanshreya2010
 
Lecture_3 Network Securityyyeyeyyeeyyeywy.ppt
bysawsan202
 
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
Types of Cryptograph Symmetric Ceaser cipher and also about Assymetric
byhamzaabdulqadeer11
 
Memory Organization In Assembly Language
byumairmuhammad0409
 
COĞRAFYA ödevi 70 sayfa güzeldir hayırlı olsun
bydtilter
 
PRITHVI theater, A true artist. Newzfeaturez.pptx
bysc05digital
 
Design For Test - Getting Test Automation value from Design Expressions.
byDavid Harrison
 
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 

Enhancing security incident response capabilities in the AP

  • 1.
    Issue Date: Revision: Enhancing Security IncidentResponse Capabilities in the Asia Pacific Region 6th APT Cybersecurity Forum Adli Wahid Security Specialist, APNIC
  • 2.
    Agenda 1. About APNIC 2.Enhancing Incident Response Capabilities 3. Recent and future activities 2
  • 3.
  • 4.
    What is APNIC? •Regional Internet Registry (RIR) for the Asia Pacific region – Comprises 56 economies • Secretariat located in Brisbane, Australia – Currently employs around 70 staff • Not-for-profit, membership-based organization • Governed by the Executive Council (EC), who are elected by the Members 4
  • 5.
    APNIC’s Vision: A global,open, stable, and secure Internet that serves the entire Asia Pacific community. How we achieve this: • Serving Members • Supporting the Asia Pacific Region • Collaborating with the Internet Community 5
  • 6.
  • 7.
    Responding to SecurityIncidents 7 National Cyber Security Agency National CERT / CSIRTs Enterprise CERTs/CSIRTs End-Users Critical Infrastructure, Network Providers, Hosting, Cloud, Government, Financial Services, SMEs=
  • 8.
    Network Operators /Service Providers • A key player in the Incident Response process • Availability is important – Critical Infrastructure (Internet Exchange) – Increasing becoming a target • Need to be aware of the (changing) threat landscape – Help increase resilience the infrastructure by applying best practices – Provide timely assistance & mitigation – Emerging Trends - IOTs – CERT/CSIRT of the last resort • Network Operators Groups (NOGs) – Local & Regional NOGs – APRICOT & APNIC Conference 8
  • 9.
    Network Operators –Incident Response Relationship • Interdependent entities • Expectations – Resources are not misused or abused – Fast ‘take-downs’ or response – Share information (logs, billing etc) – Communicate with Users / Technical support – 24x7x365 • Frequently, at the receiving end 9 Network Operator End-Users Customers Security Response Community Law Enforcement
  • 10.
    Incident Response Capabilities •Managing Security Incidents – Reduce impact of security incidents – Prevent security incident from occurring – Fixing actual vulnerabilities – Gain insights about emerging threats or incidents (ISACs, threat intel feeds) – Collaborate with other stakeholders (i.e. investigation, policy/strategy) • Managing Security Incident Response Teams – Establishing CSIRTs – Operationalizing CSIRTs – Having the right skill sets, knowledge and tools – Being part of the community – Mentoring 10
  • 11.
    APNIC’s Approach • Capacitydevelopment – Internet infrastructure – Cyber security* • Strategic Partnership – Various stakeholders – Regional & global – Shared goals 11
  • 12.
    Security Outreach 12 Craig Ng Promotingsecurity best practices in the APNIC community NOGs, CSIRTS and LEA events PK, CN, HK, KR, JP, PH SG, MY, ID, AU, TW Collaboration with JICA and KISA to deliver regional CERT training Geoff Huston member of ICANN SSAC Adli Wahid member of FIRST Board MoU with APCERT Interpol Global Cyber Crime Group Adli Wahid www.apnic.net/security
  • 13.
    CSIRT Best PracticeForum • IGF 2014 & 2015 – Best Practice Forum on Establishing and Supporting Computer Security Incident Response Teams (CSIRT) for Internet Security • Multistakeholder approach • Addresses key concerns of establishing & setting up a CSIRTs – Key success factors – Costs & capacity building – Stakeholder engagement – Opportunities & challenges • Call for Comments – http://intgovforum.org/cms/best-practice-forums/2- establishing-and-supporting-csirts 13
  • 14.
    Upcoming Activities • Supportfor regional activities – FIRST & IDSIRTII TC (October) – FIRST & KRCERT/CC TC (November) – Interpol Global Cyber Crime Meeting (December) – APRICOT 2016 in Auckland (February) • eLearning & Training – https://training.apnic.net • Follow us for the latest updates – Blog https://blog.apnic.net – Twitter @apnic
  • 15.
    Resource Public KeyInfrastructure (RPKI) 15 RPKI presentations to NOGs and conferences ‘Ready to ROA’ Campaign – hands-on sessions to help Members create ROAs Shirts, stickers, web content to promote campaign Regional RPKI adoption has more than doubled in past year - 0.82% to 1.92% and rising www.apnic.net/roa • 10 face-to-face and eLearning RPKI training courses delivered • Offline simulation of production system • Create and revoke ROAs, observe changes to routing state in lab
  • 16.
    Internet Operational ResearchGrants 16 New fund supporting the Internet research community in the Asia Pacific Research aiming to improve availability, reliability, and security of the Internet in the Asia Pacific Network measurement and analysis IPv6 deployment BGP Routing Network Security
  • 17.
    Conclusion • Capacity developmentis fundamental & critical • Approach must be flexible and scalable • Plenty of challenges & opportunities • Let’s collaborate! 17
  • 18.

Editor's Notes

  • #8 We have to realize that different economies have different Cyber Security Environment. Some have frameworks, policies and institutions in place. But others don’t. Even if you have everything in place – there is a lot of dependencies. You need to look at the bigger picture (NEC Talk yesterday)
  • #9 Keeping information up to date
  • #10 Host Critical Infrastructure Case Studies – Take downs Environment
  • #11 Understanding about security incidents
  • #12 Win-win approach & through various means
  • #13 Security specialist Adli Wahid, is working with different teams within APNIC as well as building relationship with potential and new partners that APNIC can leverage. Adli was recently elected as a board member of the Forum of Incident and Security Response Teams Build capability through training, providing content on security at APNIC and LEA training Participation in NOGs, inter-governmental forums, CERTS etc. We take that knowledge and share it with Members to raise awareness Highlighting relevant initiatives to Members to improve security such as IRT objects in whois, RPKI, and SAVE (BCP 38) We also supported security community events such as the PHCERT & APCERT Conference this year MOU with APCERT in the area of promoting security awareness, improving incident response and supporting capacity development activities
  • #14 Where do we capture this CSIRT Knowledge
  • #15 We would like to encourage members to participate in our event. Let us know for opportunities
  • #16 In the last meeting I highlighted our ROA. Ready to ROA our initiative to promote security routing The main aim is to get Network Operators to create Route Object Authorisations – which will enable others to validate the origin of routing announcement. * 1.92 uptake as of September 2015 (https:// This is also part of our effort to promote Routing Security among network operators and cyber security agencies There has been some progress since we actively promote it at various events. It must be stressed however that his is only the first step
  • #17 APNIC is the secretariat of ISIF (Internet Society Innovation Fund) Help spread the word about ISIF grant – covers IPv6 and Operational Network Security. Up to 60k AUD grant
  • #18 How to make it scale? How do we cover areas that do not have enough resources?