Presentation is loading. Please wait.

Presentation is loading. Please wait.

How we work as a national CERT in China ZHOU Yonglin CNCERT/CC, China 2 Addressing security challenges on a global scaleGeneva, 6-7 December 2010.

Published bySarah Nicholson Modified over 8 years ago

Similar presentations

Presentation on theme: "How we work as a national CERT in China ZHOU Yonglin CNCERT/CC, China 2 Addressing security challenges on a global scaleGeneva, 6-7 December 2010."— Presentation transcript:

1

2 How we work as a national CERT in China ZHOU Yonglin CNCERT/CC, China 2 Addressing security challenges on a global scaleGeneva, 6-7 December 2010

3 Internet Development in China By the end of June 2010, The number of Internet users was about 420 million, counting for 31.8% of total population. Broadband users was nearly 364 million Mobile Internet users was nearly 277 million The commercial applications showed remarkable increase. The users of online-shopping, online-payment, online-banking were 142 million, 128 million and 122 million, counting for 33.8%, 30.5%, 29.1% of total Internet user. Online video users was about 265 million Benefitting from mobile phone development, the online- reading users reached 188 million. 3 Geneva, 6-7 December 2010Addressing security challenges on a global scale Source: MIIT and CNNIC

4 Internet Security Situation in China: Malicious code activity In the first half of 2010, CNCERT monitored: Trojans activity: control servers counting by IP : 247,235 compromised hosts counting by IP : 3,966,329 IRC-Bot activity: control server counting by IP : 6,451 compromised host counting by IP : 3,148,046 In the whole year of 2009, about 28 million Conficker worm infected computers were in China.

5 Internet Security Situation in China: Website defacement In the first half of 2010, CNCERT monitored: – Number of all defaced website: 14,907 , decreased 21.75% than the same period of 2009 。 – Defaced government website : 2,574, increased 222.56% than the same period of 2009

6 Internet Security Situation in China: More… DDOS attacks Phishing Smart Phone malware – ‘DuMusicPlay’ infection: nearly 1 million in first week of Sep. – ‘Mobile Skull’ infection: nearly 560 thousand in same week. 6 Addressing security challenges on a global scaleGeneva, 6-7 December 2010

7 About CNCERT Full name: National Computer network Emergency technical Response Team Coordination Center of China CNCERT/CC is a National level CERT organization, which is responsible for the coordination of activities among all Computer Emergency Response Teams within China concerning incidents on national public networks. It provides computer network security services and technology support in the handling of security incidents for national public networks, important national application systems and key organizations, involving detection, prediction, response and prevention. It collects, verifies, accumulates and publishes authoritative information on the Internet security issues. It is also responsible for the exchange of information, coordination of action with International Security Organizations.

8 About CNCERT CNCERT has 31 branches around the nation, located at each capital of provinces. CNCERT is a leading organization on cyber security industry. Also take the role of network and information security committee of Internet Society of China. CNCERT is a full member of FIRST and APCERT.

9 Connections and working mechanism Supporting government – Ministry of Industry and Information Technology who is in charge of the Internet and telecommunication infrastructure security and coordinating the safeguarding of online government information system, and social critical information systems CNCERT: Collecting security info. of ICT field and issue advisories, coordinating ISPs, DNRs to clean malware control servers, monitoring attacks to government online systems, etc. – Other governments CNCERT: following the cross-department working mechanism, provides technical supports like vulnerability evaluation, incident handling,… etc. 9 Addressing security challenges on a global scaleGeneva, 6-7 December 2010

10 Uniting Industries and initiatives Industrial Self- discipline 10 Addressing security challenges on a global scaleGeneva, 6-7 December 2010 CNVD- China National Vulnerability DatabaseANVA – Anti Network Virus Association

11 CNCERT played key role on cyber safeguarding of national events 2008 Beijing Olympics Shanghai EXPO 2010 Nation Leaders’ Online Talks2010 Guangzhou Asian Games

12 Actively join international cooperation – Join FIRST and APCERT and relevant events – Sign MOU with CERTs in other countries or regions, who have common interest on incident handling and information sharing. – Carry out joint activity during critical period or incident. Notice potential conflicts on Internet during hot foreign affairs Waledac botnet handling: Microsoft initiated Waledac campaign in US. Feb 2010, according to MS’s request, CNCERT quickly stopped 16 malicious domain names registered in China. 12 Addressing security challenges on a global scaleGeneva, 6-7 December 2010

13 ACKNOWLEDGEMENT Many thanks to ITU-T secretariat, workshop chairman and coordinators for your kind invitation and helps. Many thanks to the development of Internet and telecommunication technology by which I can join you remotely. Yes, that is what our cyber security guys are fighting for! CONTACT zyl AT cert DOTorg DOTcn +86 10 8299 0355 www.cert.org.cn

Download ppt "How we work as a national CERT in China ZHOU Yonglin CNCERT/CC, China 2 Addressing security challenges on a global scaleGeneva, 6-7 December 2010."

Similar presentations

Its a new digital world with new digital dangers….

Its a new digital world with new digital dangers….
1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.

1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.
International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.

International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.
IMPROVING THE INTERNATIONAL COMPARABILITY OF STATISTICS PRODUCED BY CSIRTs Developing Cybersecurity Risk Indicators panel 26 th Annual FIRST Conference.

IMPROVING THE INTERNATIONAL COMPARABILITY OF STATISTICS PRODUCED BY CSIRTs Developing Cybersecurity Risk Indicators panel 26 th Annual FIRST Conference.
SCADA Security, DNS Phishing

SCADA Security, DNS Phishing
Jinhyun CHO Senior Researcher Korea Internet and Security Agency.

Jinhyun CHO Senior Researcher Korea Internet and Security Agency.
Internet Development in Chinese Mainland Wang Enhai 2003-09-26.

Internet Development in Chinese Mainland Wang Enhai
The development of Internet A cow was lost in Jan 14th 2003. If you know where it is, please contact with me. My QQ number is 87881405. QQ is one of the.

The development of Internet A cow was lost in Jan 14th If you know where it is, please contact with me. My QQ number is QQ is one of the.
CCSA REPORT Zemin YANG, Secretary General GSC-18 Meeting, 22-23 July 2014, Sophia Antipolis, France Document No: GSC(14)18_013 Source: China Communications.

CCSA REPORT Zemin YANG, Secretary General GSC-18 Meeting, July 2014, Sophia Antipolis, France Document No: GSC(14)18_013 Source: China Communications.
Network Security of The United States of America By: Jeffery T. Pelletier.

Network Security of The United States of America By: Jeffery T. Pelletier.
1. 2 A High Tech Crime Investigation Lessons learned by the National High Tech Crime Center Hans Oude Alink, project leader NHTCC November 2005.

1. 2 A High Tech Crime Investigation Lessons learned by the National High Tech Crime Center Hans Oude Alink, project leader NHTCC November 2005.
Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.

Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.
(Geneva, Switzerland, September 2014)

(Geneva, Switzerland, September 2014)
National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.

National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.
Geneva, Switzerland, 15-16 September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.

Geneva, Switzerland, September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.
Matteo Cavallini – ULS MEF/Consip Digital Agenda Assembly – Cybersecurity: barriers and incentives Matteo Cavallini Cybersecurity: State of the Art and.

Matteo Cavallini – ULS MEF/Consip Digital Agenda Assembly – Cybersecurity: barriers and incentives Matteo Cavallini Cybersecurity: State of the Art and.
1 China Internet Network Information Center ( CNNIC ) Administrative Practice of.CN Domain Names.

1 China Internet Network Information Center ( CNNIC ) Administrative Practice of.CN Domain Names.
Norman SecureSurf Protect your users when surfing the Internet.

Norman SecureSurf Protect your users when surfing the Internet.
Capacity Development Workshop on Public Information Management System and Policy in Korea on cyber attacks 2011.11.28 Jeong Min, Lee KISA.

Capacity Development Workshop on Public Information Management System and Policy in Korea on cyber attacks Jeong Min, Lee KISA.
Session 4.2 Creation of national ICT security infrastructure for developing countries Industry-wide approach: Raising awareness for ICT security infrastructure.

Session 4.2 Creation of national ICT security infrastructure for developing countries Industry-wide approach: Raising awareness for ICT security infrastructure.

Similar presentations

Ads by Google