2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Cyber Security in RussiaCyber Security in Russia

Andrey ChapchaevRussian Association of Networks and Services,

Head of the Info-security Committee of the Association

Russian Association of Networks and Services

2

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Internet users in regions of Russia

Northern region15 % 2,3 ml

Moscow18 % 2,7 mln

Central region17 % 2,5 mln

Ural5 % 0,8 mln

South region11 % 1,7 mln

Volga region18 % 2,4 mln

Far East4 % 0,7 mln

Siberia 13 % 1,9 mln

Russia 100% (14,9 mln)

3

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Mobile subscribers growth in Russia

19,28

42,3

49,6

0

10

20

30

40

50mln

2003(January)

2004(March)

2004(June)

4

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Growth of registered computer crimes in Russia

13753320

6049

10920

7141

02000400060008000

1000012000

2000 2001 2002 2003 2004(1-st half)

5

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

10%15%

33%24%

18%

Business espionage

Tapping telephone conversations

Gaining secret information

Copying software

Illegal access to databases*According to the main information center of the Ministry of Internal Affairs

Targets of computer crimes

6

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

45%

15%

14%

11%2% 3% 5%

Virus attacksDDoS attacksInterception to the system outsideUnauthorized access from withinCommercial information theftFinancial fraudIntegrity violation of data and/or networks

Types of computer crimes

*According to the main information center of the Ministry of Internal Defense

7

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Russian information security infrastructure

communications operators (internet providers, content providers, service and application providers, etc), developers, public authorities,

associations

8

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

NUMBER of VB100% AWARDS since November 2001 till August

2005

Company & Product Country Number of awards

1. Eset NOD32 Slovakia

UK

Russia

US

Russia

Sweden

US

US

Taiwan

Hungary

18

2. Sophos Anti-Virus 16

3. Kaspersky AntiVirus 15

4. Symantec AntiVirus 15

5. Doctor Web Dr.Web 14

7. Computer Associates Vet 13

6. Norman AntiVirus 14

8. McAfee VirusScan 13

9. Trend Micro PC-Cillin 12

10. VirusBuster VirusBuster 12

9

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

international cooperation

UN General Assembly Resolution № 58/32 of December 8-th 2003 - Expert Group on international information security;the Summit of the G-8 Countries in May 2004 that adopted a joint communiqué approving prepared materials and initiatives, including widening of practice of investigations and distribution of best practices regarding security infrastructure;ITU-T collaboration;Special workgroup of the Regional Commonwealth in the field of Communications (was created in June 2004)

10

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

МВД России

RANS members

In total 122 members

ЦНИИС НИИР ФСБ России ИГП РАН

11

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Advisory Board in the area of Cyber Security

Most important tasks of the Advisory Board are:co-ordination work flow for computer incidents analysis;development for possible strategy of reactions and responses should be performed by public network providers (operators) in case of some breaches or/and network violations were detected;development for possible warning systems to inform about expected network threats over public network;co-ordination the collaboration between government officials and network and service providers in the field of Cyber Security.

The Chairman of this Board is the Head of Department of Information and Communication technologies of Ministry – Mr. Vitaly Slizen.

12

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Russian information security projects are being managed by RANS

memorandum of prevention of the viruses and spam distribution; comparative analysis of information security legislation in different countries; information security framework for public network (The basic level includes compulsory requirements for monitoring, discovering and taking adequate counter measures procedures);watching of standardization processes.

All these projects are developed on the instruction of the Ministry for information technologies and communication of the Russian Federation

13

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Virus infected messages detected

Months, Sept'03 to Sept'04

0

10

20

30

40

50

Infe

cted

mes

sage

s, %

%

Virus infected messages detected

Virus detection and filtering in incoming mail at Yandex.mail, Sept’03 through Sept’04

14

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Spam messages detected and filtered out

Months, Sept'03 to Sept'04

0

20

40

60

80

100

SPA

M m

essa

ges,

%%

Spam messages detected and filtered out

15

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

March 2006 “RANS” Conference

March 2006 “RANS” will organize its next conference in Moscow.

The theme of Cyber Security will take important place in this meeting of it-experts.

We would be very glad to invite all interested parties to enjoy this conference together.

16

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Collaboration

The Russian Federation attaches the great importance to ASEAN activity which we consider as the key tool of dialogue on all aspects of an antiterrorist problematic in Asia-Pacific Region.

We intended to participate in realization of decisions of the Forum aimed at development of multilateral cooperation in sphere of struggle with Cyber-terrorism actively.

In our opinion, cooperation in this area should lean on multilateral efforts which will form a basis of maintenance of equal safety for all states from terrorist threats.

We consider, that in conditions of increase of a actuality of this kind of terrorist threats it would be expedient to participants of the Forum to take steps directed to development of strategy of complex counteraction Cyber-threat on the basis of unified international-legal mechanisms

17

RANS

2nd ASEAN REGIONAL FORUM, Seminar on Cyber-terrorism, Cebu City, 3-5 October 2005

Thank you for your attention.

Contacts:Web access: www.rans.ruEmail: info@mail.rans.ruTel: +7 (095) 673-48-83Fax: +7 (095) 673-30-29

Chairman of the Executive Committee of “RANS” -Arkadiy Kremer (e-mail: kremer@mail.rans.ru)

Head of Info-security committee of “RANS” – Andrey Chapchaev (e-mail: chapchaev@infotecs.ru)