Transcript GSC17-PLEN-83

Document No:
GSC17-PLEN-83
Source:
Korea Internet & Security Agency
Contact:
Miyeon Yoon
GSC Session:
PLEN
Agenda Item:
10.3
Introduction to KISA
Miyeon Yoon,
Korea Internet & Security
Agency
Jeju, 13 – 16 May 2013
Contents
1. Foundation
2. History & Challenges
3. Key Facts
4. What we do
5. What we have done on Standardization
GSC-17, Jeju / Korea
GSC17-PLEN-83
1. Foundation
GSC17-PLEN-83
Act on Promotion of Information and Communications Network
Utilization and Information Protection, Etc.
K
I
S
A
Internet Development
Information Security on Public and Private sector
International Cooperation
GSC-17, Jeju / Korea
3
2. History & Challenge
GSC-17, Jeju / Korea
GSC17-PLEN-83
4
3. Key Facts
GSC-17, Jeju / Korea
GSC17-PLEN-83
5
3. Key Facts
GSC17-PLEN-83
Organization Chart
4 Teams
KISA Academy,
6 Teams
GSC-17, Jeju / Korea
7 Teams
3 Teams
12 Teams
10 Teams
3 Teams
6
4. What we do (1/4)
GSC17-PLEN-83
Information Security
[Public Sector Information Security]
• Critical Information Infrastructure(CII) Protection measures & support for incident recovery
• Information Security Consulting for e-Government services, and G-ISMS
• SW assurance services for IT security product(smartcard, firewall, etc.)
• Operating Root CA for National PKI & Promoting PKI usages
[Personal Information Protection]
• Operating the Privacy Incident Response System (PIRST) 24/7
• Operating 118 CALL CENTER 24/7
• Providing Consultation & Alternative Dispute Resolution(ADR) for personal information dispute
Korea Internet Security Center
[Reliable and Secure Internet Environment]
• Operating Korea Internet Security Center(KrCert/CC)
• Early detecting and responding to prevent damages from Internet incident
• Strengthening domestic and international cooperation for incident response
• Operating Spam Response Center
• Strengthening collaboration with specialized institution(agency)
• Supporting developing countries to establish CERT(Computer Emergency Response Team)
GSC-17, Jeju / Korea
7
4. What we do (2/4)
GSC17-PLEN-83
Internet & Security Research
• Providing the Issue Report on Global IT, ICT Policy Trends etc
• Studying legal system related with Internet and Supporting governments’ enactment
• Analyzing Internet & Security Policy and Statistical Research on Internet Businesses
• Making effort to improve legal system in compliance with ICT convergence environment
[International Cooperation]
• Strengthening ICT SMEs’ capabilities for global market
• Hosting ICT training programs and creating human networks
• Promoting cooperation in ICT areas with International Organization such as OECD, ITU, World Bank
• Developing and sharing best practices for cyber security policy and implementations
Better Internet Environment & Development
[Better and healthier Internet environment]
• Raising awareness of youth about the importance of Internet
• Researching on global issues on Internet ethics
• Running national campaign to make beautiful Internet world
[Industry Development]
• Testing and certifying service for domestic biometric system [K-NBTC]
• Developing new services for Near-Field Communication(NFC)
• Promoting domestic cloud services and cooperating with global partners
GSC-17, Jeju / Korea
8
4. What we do (3/4)
GSC17-PLEN-83
Standardization Activities - Security
[Development of Standards for Infrastrucure Security Technologies in Smart Environment]
• Smart grid and Mobile phone technologies in ITU-T
• USN and sensor network technologies in ITU-T
• Cyber securities in ITU-T
• Multicast technologies in ITU-T and ISO/IEC
• Cryptography and Applied cryptography technologies in ISO/IEC, ITU-T and IETF
[Development of Standards for New-convergence Technologies on Mobile Biometrics ]
• Mobile biometrics technologies in ISO/IEC and ITU-T
• Medical & mobile securuty for telebiometics in ITU-T
• Telebiometrics technologies in ITU-T
• Testing Techniques for biometrics in ISO/IEC
Standardization Activities - Internet
[Standardization of Internet Address Resources and OID-based application technology]
• Research and national standardization on internet addresses resources (domain, IP address, DNS)
• Standardization of OID resolution system and expanded application of OID in various areas
GSC-17, Jeju / Korea
9
4. What we do (4/4)
GSC17-PLEN-83
Current Works
[Development of Standards for Infrastrucure Security Technologies in Smart Environment]
• ITU-T, (X.sgsec-1)Security functional architecture for smart grid services
using telecommunication network
• ITU-T, (X.msec-8)Secure application distribution framework for communication devices
[Development of Standards for New-convergence Technologies on Mobile Biometrics ]
• ITU-T, (X.1092)Integrated framework for telebiometric data protection in e-health and telemedicines
• ITU-T, (X.tam)guideline to technical and operational countermeasure for telebiometric applications
using mobile devices
• ISO/IEC WD TR 30125, Biometrics - Use of mobile biometrics for personalization and authentication
• ISO/IEC WD 24709-1 Rev1, Conformance Test for BioAPI part 1 – Test methods and
Procedure(Revision)
• ISO/IEC FDIS 19794-14, Biometric data interchange format part14- DNA data/AMD.1 :
Conformance testing methodology
Current Works
[Standardization of Internet Address Resources and OID-based application technology]
• Researching on next identification system on IoT(Internet of Things)
• Developing OID resolution system and its test-bed
GSC-17, Jeju / Korea
10
5. What we have done
GSC-17, Jeju / Korea
GSC17-PLEN-83
11
Thank you!
Jeju, 13 – 16 May 2013