• No results found

Introduction of the GCCD. (Global Cybersecurity Center for Development)

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Introduction of the GCCD. (Global Cybersecurity Center for Development)"

Copied!
13
0
0

Loading.... (view fulltext now)

Download now ( 13 Page )

Full text

(1)

Introduction of the GCCD

(Global Cybersecurity Center for

Development)

(2)

Background

Vision

Roles and Responsibilities

Organizational Structure and Facilities

Contents

Partnership Plan

GCCD

’s Service for Developing Countries

(3)

e-mail: 240 mill. are transmitted

Flickr: 20 mill. photos are viewed

Amazon: 47,000 app are downloaded

Facebook: 6 mill. page views

YouTube: 1.3 mill. videos are played

What

’s happening on the Internet in 60 seconds?

※ Source: March 20, 2013 Daily of the UK

(4)

I. Background

Cyberspace

is becoming increasingly crucial for the creation of broader societal

benefits. However these economic and social benefits might be put at risk by

poor security, such as the growth in

cyber crime

or

cyber attack

against

ICT

network and system as a whole.

Water

Energy

Transportation

Banking

E-Government

Information &

Telecommunications

Health

(5)

Stuxnet infected

through USB (July 2010)

A closed network isolated from the outside

Attack and destroy

SCADA-controlled system

A blaster worm caused the New

York blackout (August 2003)

Iran manipulated GPS

signals to capture an

American drone

reconnaissance plane

(December 2011)

Cyber war between

Russia-Estonia (2007)

/Georgia cyber (2008)

India hacked the

intelligence bureau of

Pakistan (March 2013)

 Target : Expanded to national and social infrastructures

(6)

II. Vision

GCCD

will bring together the

knowledge and experience of Korea in

cyber-security

, and

its application

in government and

business services

, with the

WBG

related expertise in development and poverty reduction

, and its

global reach

and

contacts

in order to help developing countries build a trusted and secure

environment.

(7)

III. Roles and Responsibilities (1)

Roles and functions Key contents Capacity Building

through Human Resource Development

It will provide training courses for experts and policy-makers of WB member states, especially developing countries, in the field of cybersecurity.

Providing

the standard guideline for Information Security

It will jointly review the information security guideline (information security

management system, CERT building/operation, wireless LAN security, cloud service information security, standards for technical and administrative measures to protect personal information, etc.), published by KISA, and translate the standard guideline into English and disseminate it to developing countries.

Free dissemination of security S/W in developing countries

It will translate the security software (vaccines, firewall, self-inspection tools, etc.) developed by KISA and the private sector into English for developing countries and prevent the global dissemination of malicious codes and DDoS by disseminating it free of charge in developing countries

Capacity Building for securing cyber space is becoming crucial

as security incidents are increasing all around the world.

(8)

III. Roles and Responsibilities (2)

Roles and functions Key contents Providing information

security measures for Critical Information

Infrastructure

It will disseminate the maturity check system for Critical Information Infrastructure (CII) Protection in developing countries to evaluate the protection level of the Critical Information Infrastructure in developing countries and provide response plans.

Mobile Information Security

It will develop the mobile information security check system for mobile apps so that a virtual machine is utilized to check for unauthorized data access or malicious code insertion.

Establishing

the Early Warning System

It will monitor the Internet networks of Worldbank member states without Computer Security Incident Response Team (CSIRT) in real time, and if any sign of abnormality is detected, it will notify the country and neighboring countries so that the

dissemination of malicious codes and traffic can be blocked in early stage.

Hacking simulation and It will simulate the internal systems of the governments and public institutions of

member states with professional equipment, and develop the simulation system for

It needs measures for Critical Information Infrastructure

(9)

IV. Organizational Structure and Facilities

Organization is consists of Steering Committee, Director, Cooperation Team,

Outreach Team, Academy Team, R&D Team and Management.

(Total (at least) 19 Staffs until 2017)

Cooperation Team : 3 staffs(CSIRT, External Partnership, etc. )

Outreach Team : 3 staffs(CIIP, F/S, etc.)

Capacity Building Team : 3 staffs(Development, Operation, etc.)

R&D Team : 3 staffs(Mobile security, Standardization, etc.)

Management Team : 5 staffs(Planning, Accounting, Administration, etc. )

Co-Directors : 2 staffs

Minimum requirements for the center to start business and operate educational

programs are as below.

Office, Lecture, Laboratory, Conference rooms should be equipped

• A variety of N/W equipments, Hacking simulation equipments, and Briefing and Monitoring facilities for CSIRT should be added to the Center for future activities.

(10)

V. Partnership Plan

WB

GCCD

Korean Gov. (MSIP, KISA)

International Organization

Korea-Worldbank Co-Workshop

Cybersecurity Experts

F/S on Cybersecurity

ICT Expert Training Course

Developing Countries

World Bank ICT Project

Analyze cybersecurity component and

apply it

Other Organizations

(EBRD, AfDB, WEF, IDB, ADB, ASEAN,

APEC, OAS, OECD, ITU IMPACT,

ENISA, etc.)

Global ICT Companies

Academy

(Univ. of Oxford - Global Cyber

Security Capacity Centre, a couple

of Korean Universities)

Member States

External Partner

GCCD is going to be set up with close cooperation between Korean government

and World Bank

(11)

VI. GCCD’s Service for Developing Countries

Countries hoping to enlist help from the GCCD in establishing information

security system can benefit from the center’s professional support as the

following.

Information Security Expert Training Course

Consultation for CIIP (Critical Information Infrastructure Protection)

Local advisory to help build information security system

Educate public officials from developing countries by dispatching them to

(12)

Ⅶ. Implementation Schedule

Design Detailed Action Plan

(Schedule, Fund, Location, Environment setup etc.) 

Selection of a hosting city

Conduct F/S to establish the WB GCCD

Opening of the center (2

nd

Half of 2014)

Employment of Personnel of the Center

Building of cooperation relationship with WB GCCD

Building of Partnership with companies

Development of courses and subjects

Installation of Facilities (N/W, PC, etc.)

April~

July~

December

March

(13)

References

Download now ( PDF - 13 Page - 2.53 MB )

Related documents

HIPAA ephi Security Guidance for Researchers

development,  implementation,  and  maintenance  of  security  measures  to  protect  electronic  protected  health  information  and  to  manage  the  conduct  of 

Daily and hourly chemical impact of springtime transboundary aerosols on Japanese air quality

Indeed, the high levels of natural dust at the beginning of Phase 4 contrast greatly with the later peaks in anthropogenic con- taminants as the sulphatic plume was repeatedly

Request for Qualifications. to provide. Managed Print Services (MPS) March 31,

The City of Moline is requesting a statement of qualifications for consulting and print assessment services in order to identify feasibility of a long term agreement with a

Expert Reference Series of White Papers. Planning for the Redeployment of Technical Personnel in the Modern Data Center

Dooley, CCSI, Global Knowledge Course Director Introduction The modern data center is a highly technical combination of servers, memory devices, management workstations,

Top Management Team Diversity: A Systematic Review

estimates presented in the studies included in our work can be meaningfully compared to each other. Our initial literature research retrieved 120 published papers on TMT diversity.

a GAO GAO MUTUAL FUND INDUSTRY SEC s Revised Examination Approach Offers Potential Benefits, but Significant Oversight Challenges Remain

Similarly, SEC’s inability to conduct examinations of all mutual funds within a reasonable period may limit its capacity to accurately distinguish relatively higher risk funds

BUILDING A HIGHLY-AVAILABLE ENTERPRISE NETWORK WITH JUNIPER NETWORKS EX SERIES ETHERNET SWITCHES

To improve availability at the network level, Juniper Networks EX3200 Ethernet Switch, EX4200 Ethernet Switch with Virtual Chassis technology, and EX8200 line of Ethernet switches

Struds Manual

Select the grade of concrete and steel that you want to assign to the columns in selected floor and click on SAVE button.. Now you can click on the OK button to redesign