cyber security in russia -...
TRANSCRIPT
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Cyber Security in RussiaCyber Security in Russia
Andrey ChapchaevRussian Association of Networks and Services,
Head of the Info-security Committee of the Association
Russian Association of Networks and Services
2
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Internet users in regions of Russia
Northern region15 % 2,3 ml
Moscow18 % 2,7 mln
Central region17 % 2,5 mln
Ural5 % 0,8 mln
South region11 % 1,7 mln
Volga region18 % 2,4 mln
Far East4 % 0,7 mln
Siberia 13 % 1,9 mln
Russia 100% (14,9 mln)
3
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Mobile subscribers growth in Russia
19,28
42,3
49,6
0
10
20
30
40
50mln
2003(January)
2004(March)
2004(June)
4
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Growth of registered computer crimes in Russia
13753320
6049
10920
7141
02000400060008000
1000012000
2000 2001 2002 2003 2004(1-st half)
5
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
10%15%
33%24%
18%
Business espionage
Tapping telephone conversations
Gaining secret information
Copying software
Illegal access to databases*According to the main information center of the Ministry of Internal Affairs
Targets of computer crimes
6
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
45%
15%
14%
11%2% 3% 5%
Virus attacksDDoS attacksInterception to the system outsideUnauthorized access from withinCommercial information theftFinancial fraudIntegrity violation of data and/or networks
Types of computer crimes
*According to the main information center of the Ministry of Internal Defense
7
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Russian information security infrastructure
communications operators (internet providers, content providers, service and application providers, etc), developers, public authorities,
associations
8
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
NUMBER of VB100% AWARDS since November 2001 till August
2005
Company & Product Country Number of awards
1. Eset NOD32 Slovakia
UK
Russia
US
Russia
Sweden
US
US
Taiwan
Hungary
18
2. Sophos Anti-Virus 16
3. Kaspersky AntiVirus 15
4. Symantec AntiVirus 15
5. Doctor Web Dr.Web 14
7. Computer Associates Vet 13
6. Norman AntiVirus 14
8. McAfee VirusScan 13
9. Trend Micro PC-Cillin 12
10. VirusBuster VirusBuster 12
9
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
international cooperation
UN General Assembly Resolution № 58/32 of December 8-th 2003 - Expert Group on international information security;the Summit of the G-8 Countries in May 2004 that adopted a joint communiqué approving prepared materials and initiatives, including widening of practice of investigations and distribution of best practices regarding security infrastructure;ITU-T collaboration;Special workgroup of the Regional Commonwealth in the field of Communications (was created in June 2004)
10
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
МВД России
RANS members
In total 122 members
ЦНИИС НИИР ФСБ России ИГП РАН
11
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Advisory Board in the area of Cyber Security
Most important tasks of the Advisory Board are:co-ordination work flow for computer incidents analysis;development for possible strategy of reactions and responses should be performed by public network providers (operators) in case of some breaches or/and network violations were detected;development for possible warning systems to inform about expected network threats over public network;co-ordination the collaboration between government officials and network and service providers in the field of Cyber Security.
The Chairman of this Board is the Head of Department of Information and Communication technologies of Ministry – Mr. Vitaly Slizen.
12
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Russian information security projects are being managed by RANS
memorandum of prevention of the viruses and spam distribution; comparative analysis of information security legislation in different countries; information security framework for public network (The basic level includes compulsory requirements for monitoring, discovering and taking adequate counter measures procedures);watching of standardization processes.
All these projects are developed on the instruction of the Ministry for information technologies and communication of the Russian Federation
13
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Virus infected messages detected
Months, Sept'03 to Sept'04
0
10
20
30
40
50
Infe
cted
mes
sage
s, %
%
Virus infected messages detected
Virus detection and filtering in incoming mail at Yandex.mail, Sept’03 through Sept’04
14
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Spam messages detected and filtered out
Months, Sept'03 to Sept'04
0
20
40
60
80
100
SPA
M m
essa
ges,
%%
Spam messages detected and filtered out
15
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
March 2006 “RANS” Conference
March 2006 “RANS” will organize its next conference in Moscow.
The theme of Cyber Security will take important place in this meeting of it-experts.
We would be very glad to invite all interested parties to enjoy this conference together.
16
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Collaboration
The Russian Federation attaches the great importance to ASEAN activity which we consider as the key tool of dialogue on all aspects of an antiterrorist problematic in Asia-Pacific Region.
We intended to participate in realization of decisions of the Forum aimed at development of multilateral cooperation in sphere of struggle with Cyber-terrorism actively.
In our opinion, cooperation in this area should lean on multilateral efforts which will form a basis of maintenance of equal safety for all states from terrorist threats.
We consider, that in conditions of increase of a actuality of this kind of terrorist threats it would be expedient to participants of the Forum to take steps directed to development of strategy of complex counteraction Cyber-threat on the basis of unified international-legal mechanisms
17
RANS
2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005
Thank you for your attention.
Contacts:Web access: www.rans.ruEmail: [email protected]: +7 (095) 673-48-83Fax: +7 (095) 673-30-29
Chairman of the Executive Committee of “RANS” -Arkadiy Kremer (e-mail: [email protected])
Head of Info-security committee of “RANS” – Andrey Chapchaev (e-mail: [email protected])