- Prof. Chi-Sung Laih, Director of TWISC@NCKU, National Cheng Kung University, Tainan, Taiwan -
(09:15 ~10:30 AM, 3 March,2009)
In 2001, The Executive Yuan of the Taiwanese government formally established the National Information & Communication Security Taskforce (NICST) for the purpose of creating an integrated information and communication security defense system for 3,713 major government organizations, and also implement strict controls on twenty major national infrastructure information systems that affect national security and social stability. There will be a yearly increase of funds towards this purpose until it reaches 10% of government communication budget.
The TaiWan Information Security Center(TWISC) is supported by the National Science Council and was established in April 2005 in order to cultivate information security expertise. It has 3 Centers in the Northern, Central and Southern Areas of Taiwan. For the southern area, Chi-Sung Laih is the director of the TaiWan Information Security Center at National Cheng Kung University, TWISC@NCKU.
For increasing international cooperation and discussion, the International Collaboration for Advancing Security Technology, iCAST) was created in 2006. It is focused on technology and research and development. The iCAST Group 3 is also under Prof Laih.
For the last few years, TWISC@NCKU’s major focus has been the Testbed@TWISC. Currently, it is the 3rd largest Testbed of it’s kind. This talk is to introduce, demonstrate and promote the Testbed. We hope industry can use this Testbed to help develop and test products which can further Taiwan’s communication, network and security industry. We believe fostering cooperation between industry and academia is key to progress.
- Mr. Venkatesh Sadayappan, Product Manager (Asia Pacific), IBM -
(10:45 ~12:00 AM, 3 March,2009)
The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done to mitigate it.
2008 X-Force security trend statistics report. The most startling finding is that hackers have perfected the means to compromise the security of corporate Web sites, and are using these sites to launch cyber-attacks against site visitors. In effect, they are turning corporations against their own customers. The key report findings identi fying this trend include:
--Web application vulnerabilities have hit an all-time high.
--Hackers are attacking these vulnerabilities with massive waves of automated SQL injection attacks.
--As the "third leg" of this trend, IBM X-Force traced more than twice the number of malicious URLs hosting exploits than were found in all of 2007.
