OKINAWA-Besides hackers, organized crime or even a cyber warfare unit that supported the state, businesses and government agencies of Japan facing the enemy cybersecurity unique: themselves.
Even when the frequency and sophistication of cyber attacks increased sharply around the world, the efforts of the world's third-largest economy to improve data security inhibited widespread corporate culture, which is considered a security breach as a loss of face. The culture was considered disclosure of the incident or the sharing of information on critical moment something bad, according to experts and government officials of Japan.
Repair practices cyber security has become a top national priority for Japan, which is embarrassed by the leak at Sony Pictures, the national pension fund and its biggest defense contractor, Mitsubishi Heavy Industries, which is likely to experience theft of submarines and missile design.
Toshio Nawa, top security consultant in Japan who is also adviser to the organizers of the Tokyo Olympics in 2020, said he had been called in to investigate the breach at a large government agencies in Japan.
Nawa found that five contractors cybersecurity different employed by the agency has found such violations, but none were reported or share their findings.
When evidence of the contractor collected, Nawa match it with the digital fingerprints of a group of Mexico that he believed responsible for an earlier attack against Japanese diplomatic server. Violations successfully overcome, but Nawa confusion.
"In the US, if they find a problem, they had to report," he said. "Engineers of Japan was failing to meet its obligations if they improve the report. They feel ashamed."
Cyber security industry worldwide, not only in Japan, often called for greater transparency within and between organizations. The US Senate last month endorsed the Law Division of the Cyber Security Information to facilitate the sharing of data between private companies and government for security purposes, while civil liberties advocates warn that it is a threat to privacy.
But the problem was particularly acute in the private sector and high profile government ministries in Japan. Widespread bureaucracy overwhelmed "negative culture that prevents the desire to communicate quickly," said William H. Saito, chief adviser cyber security for Prime Minister Shinzo Abe.
While ordinary workers fear reports on security issues will make them punished, the problem reflects a lack of understanding broadly about cyber security among Japanese executives on board, according to Saito in an interview on the sidelines of the conference Cyber3 in Okinawa.
"In Japanese culture, in some situations upper-level management does not understand the use of email and the integration of information technology is a kind of voodoo magic," said Saito, who was born in the US, and also an executive at Palo Alto Networks, a security company.
"In fact, companies have been hacked or be hacked. My message is, 'it's not your fault.'"
The latest data from 2013 indicate that the Japanese government networks face increasing cyber attacks eight times that of the previous two years, with attacks that spread to civilian infrastructure, telecommunications and energy sectors as well.
Based on that data, Abe government has made the Tokyo Olympics in 2020 the opportunity to improve Japan's national security while calling on the government to be more involved in asking companies to consider cyber security more seriously.
A cyber security agency cabinet level in September published a strategy document which proposes, among other things, the addition of classes cybersecurity for the government-run firms, providing financial incentives to companies that showed increased security capabilities, and require company- companies to elevate the head of cyber security.
Cabinet report also highlights the issue of disclosure, saying "it is important to free the network operator of the psychological burden of losing credit or reputation of their business when providing information to others."
Jim Foster, a former US diplomat and Microsoft executives Japanese who heads the International Center Keio for Internet and Society in Tokyo, said that the threat of hacking that evolved quickly provide a challenge for the Japanese industry, which never developed a deep expertise on cyber security to exchange ideas and active knowledge.
"Japanese companies are growing too big too fast and do not need to work or rely on outside expertise," he said. "But now there is a new threat that never existed before and the situation has suddenly become difficult."
But changing habits is not easy, said Nawa, security adviser to the Olympics, which now hold sessions simulation and education across the country, in which he stressed the security engineers - which is not always a shortage of technical expertise - the importance of sharing discoveries and talk when there is problem.
He said he uses a simple mantra in circuit training: "I said: 'Remove your self-esteem'."
0 komentar:
Posting Komentar