Downloaded 78 times
Uploaded byYudhistira Nugraha
Managing High-Volume Cyber Attacks Through Effective Strategies in Indonesia
Indonesia faces approximately one million cyber attacks daily, highlighting the urgent need for a national cyber security policy. The government is working through the Government Computer Security Incident Response Team (gov-csirt) to enhance information security across public organizations and respond to ICT-related incidents. Collaboration with law enforcement and international partners is crucial to address the increasing cyber threats effectively.
More Related Content
Similar to Managing High-Volume Cyber Attacks Through Effective Strategies in Indonesia
Managing High-Volume Cyber Attacks Through Effective Strategies in Indonesia
- 1. Managing High-Volume CyberAttacks Through Effective Strategies in Indonesia Yudhistira Nugraha I Head of Risk Management Directorate of Information Security Ministry of Communication and Information Technology of Republic Indonesia
- 2. Presentation Outline Increasing Risk inIndonesia Cyber Security Ecosystem Introduction of GSIRT Discussion Presentation Outline
- 3. 24 x &National CERTs in the World 3 APCERT-CC
- 4. 4 The government should immediatelycreate a National Cyber Security Policy to be used as a reference of all sectors in addressing cyber security issue. Indonesia Security Incident Response Team on Internet Infrastructure (ID-SIRTII) recorded that approximately one million cyber attacks are directed to Indonesia everyday. The country’s low security system has led to high levels of attack. Indonesia Faces 1 Million Cyber Attacks Daily
- 5. 5 • Real incidentreported such as phishing, identity theft, data (information resources) stealing, critical information resources hostages, information leakage, insider attack (i.e. virus spread) • Cases: cyber war, fraud, defamation, hoax, gambling, trafficking, child predator, pornography, prostitution, money laundering & terrorism, underground economy - UU ITE 11 / 2008 • Malicious code, common vulnerabilities/zero day attack -pirate software are widely used (not updated), political (for instance ID vs. MY) • Content blocking policy (Blacklist Policy) Increasing Risk in Indonesia
- 6. 6 • Web defacingrally (vandalism) are the most favorite action • Incident caused by political issues mostly comes from MY for instance • 1,1 million events (possible attack) daily, mostly CN & US IP’s • Cyber fraud, phishing, email and SMS fraud, malware, local SPAM increase last 2 years • Social network attack, messaging service attack, targeted attack Recent Risk Report in Indonesia
- 8. Presentation Outline Increasing Risk inIndonesia Cyber Security Ecosystem Introduction of GSIRT Discussion Presentation Outline
- 9. 9 NATIONAL CYBER SECURITY INSTITUTION Central andLocal Government Law Enforcement International CSIRTs/CERTs National Security Communities The Cyber Security Ecosystem
- 10. Other ActsEIT Act (UUITE No 11/2008) • Penal Code • Criminal Procedures • Pornography • Data Protection • Consumers Protection • Taxation • etc. Trustworthiness Certification Privacy E-Transaction Domain Name Cyberlaw (Law protection for electronic-base activities from cyber crime and misuse)
- 11. Government Regulation, 82/2012 (ElectronicSystem Provider and Electronic Transaction) Ministerial Circulation Ministerial Regulation Telecommunication Act, No. 36/1999 & Information and Transaction Electronic Act, No.11/ 2008 ElectronicSystem Governanceand RiskManagement Electronic Signature Trustworthiness CertificationBody ElectronicAgent, Certification, System,Transaction ServicesProvider Spam& DomainName Through Developmentof InformationSecurity Awareness Monitoring, Complianceand Enforcement Awareness Program through continuous Human Resource Training Cyber Security Legal Framework
- 12. Presentation Outline Increasing Risk inIndonesia Cyber Security Ecosystem Introduction of GSIRT Discussion Presentation Outline
- 13. GOV-CSIRT is partof the Directorate of Information Security, Ministry of Communication and Information Technology and consist of a general manager and 2 teams for monitoring, evaluation and incident response . Cyber Security Institutions
- 14.
- 15. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework Gov-CSIRT, the aim is: to increase the level of information security in government organisations through collaboration, sharing of knowledge and dealing with ICT related incidents and large scale emergencies GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 16. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework Constantly monitors the activities and news on the internet. The knowledge that is the basis of our service provision is acquired through this monitoring and the activities in our networks. GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 17. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework Supporting government organizations in preventing and dealing with ICT security incidents There is an increasing demand for our expertise. Some examples of our service provision are: ICT Risk Alert, publications on current issues, incident response GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 18. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework Membership of Gov-CSIRT is open to any government organization with a 100% public assignment (publicly funded). Central Government/Agenci es (161) Provincial Government (33) Local Government (497) GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 19. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework In the national context, GOV-CSIRT works together with National Police, National Infrastructure , Telecom Operators, Internet service providers and other incident response teams in Indonesia GOV-CSIRT is continuing to be part of an extensive network of affiliated organizations, mainly other (GovCERTs). GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 20. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework The Gov-CSIRT point of contact arrangements have been established to provide a framework for sharing information about serious and time critical computer threats, vulnerabilities or incidents for the constituency. At all times, urgent incident related can be shared with Gov-CSIRT via e‐mail to insiden@insting.komin fo.go.id. Other questions or information can be sent to info@insting.kominfo.g o.id. GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 21. Mission Activities Services Memberships Partherships Point of Contact OperationalFramework An operational framework of our organisation according to the RFC standard (RFC2350) Please refer to http://insting.ko minfo.go.id/tenta ng-idgovcert/rfc- 2350/ GOVCSIRT.ID istheComputerSecurityIncident ResponseTeamfortheIndonesian government. GovCSIRT.ID (Computer Security Incident Response Team for Indonesia Government)
- 22.
- 23. THANK YOU Yudhistira NugrahaI Head of Risk Management Email : yudh004@kominfo.go.id Ministry of Communication and Information Technology of Republic Indonesia