cyber security in the caribbean - squarespace · o status of cyber security in the caribbean o...
TRANSCRIPT
Topics
o Introduction
o Status of cyber security in the Caribbean
o Cooperation in the Caribbean
o Roadmap
o Questions
30 September 2014
30 September 2014
Caribbean Cyber Emergency Response Team Accredited by FIRST – Full member Recognized by CERT/CC Accredited by Trusted Introducer
Introduction CARICERT
www.caricert.cw
Cyber Threats
The Hackers
Hacktivist
Phishers
Spammers
Spyware/malware authors
Insiders
Foreign intelligence services
terrorists30 September 2014
Cyber Threatso Amount of attacks has increasedo Attack Characteristics:
Complexity of attacks has increased; Changing modus operandi of attackers;
Long lasting attacks; Repeating attacks; Slow attacks;
International originated and International effects; Resolution depends on all end users; Incident handling is time consuming and complex. Attack duration possible two/three years before discovering
30 September 2014
30 September 2014
Caribbean ?????
Reference:
http://resources.infosecinstitute.com/2013-impact-cybercrime/
30 September 2014
Cyber Threat Caribbean ?
Reference:
http://resources.infosecinstitute.com/2013-impact-cybercrime/
Cyber Threats Facts & Figures
30 September 2014
TCP ScannersIRC-BotsVirut-BotTor-pig BotHttp BotZeus-BotHermes-BotWorm-Boinberg BotWorm-DorkbotConfickerDos-KhanTdss-botOpenresolversProxySpamMalware URLFeodo
SPAM: 45%
30 September 2014
Cyber Threats Caribbean ?
o Lack of structural facts & figures (per country)
o Latin America & Caribbean, but how much is Caribbean?
o Caribbean countries must start collecting and sharing their facts & figures (in working groups)
o Trend Micro, Symantec, and other AV companies collect data per country
30 September 2014
Name NatCSIRT
Strategy & Policy
Legislation Awareness Info Sharing Cyber Sec degree program
Lack reporting
Financial resources
Antigua &Barbuda
In progress In progress Yes No No No Yes No
Barbados In progress In progress In progress Yes Yes No No Yes
Dominica No In progress In progress No Yes No Yes ?
Dominican Republic
No No yes Yes Yes yes yes ?
Grenada No No yes In progress Unofficial no yes ?
Haiti No No In progress Yes Yes No Yes No
Jamaica In progress In progress Yes No Yes Yes Yes ?
St.Kitts & Nevis
No No No Yes No No No ?
St.Vincent& Grenadine
No No No No No No ? ?
Trinidad & Tobago
In progress Yes In progress Yes In progress no yes ?
Reference: Latin America + Caribbean Cyber Security Trends
OAS and Symantec; June 2014
Name NatCSIRT
Strategy & Policy
Legislation Awareness Info Sharing Cyber Sec degree program
Lack reporting
Financial resources
Antigua &Barbuda
In progress In progress Yes No No No Yes No
Barbados In progress In progress In progress Yes Yes No No Yes
Dominica No In progress In progress No Yes No Yes ?
Dominican Republic
No No yes Yes Yes yes yes ?
Grenada No No yes In progress Unofficial no yes ?
Haiti No No In progress Yes Yes No Yes No
Jamaica In progress In progress Yes No Yes Yes Yes ?
St.Kitts & Nevis
No No No Yes No No No ?
St.Vincent& Grenadine
No No No No No No ? ?
Trinidad & Tobago
In progress Yes In progress Yes In progress no yes ?
30 September 2014
Reference: Latin America + Caribbean Cyber Security Trends
OAS and Symantec; June 2014
Curacao Yes No In progress In progress in progress No Yes Yes
30 September 2014
We can’t keep pace
o No synchronization between the islands
o Security threats and vulnerability landscape changes fast (daily)
o Setting up a Security organization is slow (years)
o Policy making is slow (months)
o Legislation process is slow (years)
o International cooperation is slow (years)
Combat Cyber Crime
Share structured Information
Data, measures, methods, training, incident handling
Align security programs, policy and laws
Empower others
Design new training programs
Commitment on all levels
Create regional frameworks (legal)
30 September 2014
Phases / steps
Increase awareness
Cyber Security Strategy
Cyber Security Policy
Cyber Security Legislation
Incident Response Teams (CSIRTs)
Capability building
30 September 2014
Stakeholders
30 September 2014
Internationalo LACNIC
o OAS
o APWG
o ICANN
o CTU
o ECLAC
o Ameripol
Localo Government
o Universities
o ISPs
o CSIRTs
Stakeholders
o Join stakeholders like LACNIC, CaribNog
o Accept assistance from OAS
o Start Caribbean working group for IRT
o Start working groups for Cyber Security Strategy
o Etc.
30 September 2014
WHICH STAKEHOLDER IS DOING WHAT?
30 September 2014
CARICERT cooperation initiatives
o Dutch NCSC (CSIRT)
o CERT.br (CSIRT)
o Curacao ICT Association CICA
o Team Cymru
o Caribbean Cyber Security Center (Barbados)
o DO-CSIRT (Republic Dominican)
o SURCSIRT (Suriname)
o OAS
30 September 2014
Inter-islands
Which island? All islands?
Alignment of Cyber Security Strategies & Policies
Alignment of (international) Legislation
Incident Response Capability
30 September 2014
Steering Committee
ConstituencyConstituency
Site Security
Contact
Site Security
Contact
Governmental
CSIRT
Branch CSIRT
National CSIRT
Continental CSIRT
International CSIRT
Steering Committee
Interaction model TRUST
30 September 2014
Same programs / same projects
o Start same projects
o Define which information to share
o Centralize data for analysis and correlation
Data collection project support of DO-CSIRT to CARICERT