Professional Documents
Culture Documents
National CSIRT :
Todetection
Protect Key Strategic Resources and
Event Correlation for intrusion
Conclusion
2
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Closer look of Indonesia Internet users
71.6 M
Social Media 129.2 M / 97.4%
Community/Independent Government
ID-CERT/CC ID-SIRTII/CC
8
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
Infrastructure
Services
Research and Development with Universities
and Local Communities
Coordination with other National CSIRT and
International CSIRT
9
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
Infrastructure
Services
Research and Development with Universities
and Local Communities
Coordination with other National CSIRT and
International CSIRT
10
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
1. Undang-Undang Nomor 36 tahun 1999 tentang
Telekomunikasi dan Aspek pengamanan
infrastruktur.
2. Peraturan Pemerintah Nomor 52 tahun 2000
tentang Penyelenggaraan Telekomunikasi
12
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
National Policy
1. Perdirjen Postel Nomor 227/Dirjen/2007
Pedoman Pelaksanaan Rekaman Transaksi
Koneksi (Logfile) dan Tata Cara Pelaporan Bagi
Penyelenggara Jaringan Telekomunikasi Berbasis
Protokol Internet
2. Perdirjen Postel Nomor 225 /Dirjen/2008
Tata Kelola Perangkat Deteksi Indonesia Security
Incident Response Team on Internet
Infrastructure
3. Perdirjen PPI tentang Time Server
13
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Government
ID-SIRTII/CC
Vision
Build Indonesia Internet within safe, comfortable and conducive environment
Mission
Enhance Internet growth in Indonesia through security awareness campaign for
technology and information systems, supervise potential security incidents, support law
enforcement, and protecting cyber critical infrastructure.
Strategic Goals
1. Protect the nations cyber information infrastructure
2. Coordinate partnerships across sectors to achieve shared situational awareness
across the global cyber infrastructure
3. Respond to cyber incidents to minimize incidents and support recovery efforts
14
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Government
ID-SIRTII/CC
Core Activities
1. Identify, research, and verify suspicious cyber activity;
2. Understand the nature of incidents and vulnerabilities, determine impacts
and set priorities;
3. Share timely and actionable information;
4. Build and maintain strong collaborative partnerships with public, private,
and international partners;
5. Identify, prioritize and escalate cyber incident response activities; and
6. Collaborate with partners to respond to and mitigate significant cyber
incidents.
15
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
ID-SIRTII Structure
Minister of ICT
Directorate General of
Ditjen Aplikasi Informatika
Chairman
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
CONSTITUENCIES
ISPs
Law
Enforcement
NAPs
IXs
sponsor ID-SIRTII
Government
of Indonesia National
Security International
Communities/ CSIRTs/CERTs
Universities
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
Infrastructure
Services
Research and Development with Universities
and Local Communities
Coordination with other National CSIRT and
International CSIRT
18
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Infrastructure
19
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Infrastructure (update)
20
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
21
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Infrastructure
DNS Monitoring
NTP Server
Connection Log Server
etc.
22
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
Infrastructure
Services
Research and Development with Universities
and Local Communities
Coordination with other National CSIRT and
International CSIRT
23
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Cyber Security Response System
Create an architecture for responding to
national-level cyber incidents
Threat and Risk Analysis
Resilience, Mitigation, Remediation
Monitoring
Warning/Alert System
Incident Management
Response & Assistance
Cyber Security Awareness
24
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Threat and Risk Analysis
Our primary concern is the threat of
organized cyber attacks capable of
causing debilitating disruption to our
Nations critical infrastructures,
economy, or national security
25
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Resilience, Mitigation, Remediation
1. Secure the mechanisms of the Internet
a) Improve security and reliability of key protocols:
IP, DNS.
b) Routing: address verification, management.
2. Reduce and remediate software
vulnerabilities
3. Understand infrastructure interdependency
and improve physical security of cyber
systems and telecommunications
26
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
Infrastructure
Services
Research and Development with Universities
and Local Communities
Coordination with other National CSIRT and
International CSIRT
27
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Conducting Digital Forensics and Malware
Analysis Laboratory
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Security Awareness and Training
Program
1. Awareness for public, home/small business,
enterprises, universities, industrial sectors
and government
2. Developing more training & certification
program to combat a perceive workforce
deficiency.
29
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Joint Research Between :
30
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Five Pillars of National CERT/CSIRT
National Policy
Infrastructure
Services
Research and Development with Universities
and Local Communities
Coordination with other National CSIRT and
International CSIRT
31
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
National Cyber Security Day
National Cyber Security Awareness Day, online
safety campaign
32
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Incident Handling Exercises
Conducting National Cyber Incident Exercise
involving all stake holders and Constituencies
33
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Regional and International
Coordination
Actively involved in Regional, International Drill
Test (ACID ASEAN, OIC, APISC and APCERT)
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Conclusion
The Internet is a part of National Critical
Infrastructure
Government and National Cyber Community are
responsible for Securing National Cyberspace
There are five pillars of National CERT/CSIRT :
National Policy, Infrastructure, Services, Research and
Development with Universities and Local Communities,
Coordination with other National CSIRT and International
CSIRT
Educating and empowering the community
Participating in regional and international Internet
community activities
35
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017
Thank You
Ferry Astika Saputra
Department of Informatics and Computer Engineering
Politeknik Elektronika Negeri Surabaya
Raya ITS Sukolilo Surabaya Indonesia 60111
ferryas@pens.ac.id
The 3rd Timor-Leste National Conference on Information and Communication Technology 2017