2 posts categorized "Sri Lanka" Feed

Dec 22, 2016

Update from the CyberGreen Project

Hi, this is Moto Kawasaki from Global Coordination Division. It has been a little while since I wrote about the CyberGreen Project last time, and I would like to update the achievements of the Project.

The most impressive news in the first half of this fiscal year 2016 (Apr-Sep in Japan) is the renewal of its web site. Please have a look at the Info site and you'll find nice pages introducing distinguished advisers and board members of the Project, the mission statement and Project goals, and much more.

Figure 1: CyberGreen Info site

It is a good summary and outcome of what we have been aiming for years, and especially the Blog page shows cutting-edge stories around the Project, including investments not only from JPCERT/CC over the years, but also from the newly-joined Foreign & Commonwealth Office of the United Kingdom and Cyber Security Agency of Singapore, which proves the project is well-supported by various organizations.

If you click the Statistics tab, you'll find the Stats site that describes the Beta-2 version of the statistics with a colored map and scores by region and by AS number. These scores are based on the data from the Open Resolver Project and other data sources, as listed in the Data Inventory page. The calculation algorithm is described in the About page, and the score is a kind of density as per the formula: the natural logarithm of the number of open servers found in a region over the natural logarithm of the maximum number of nodes per country in that region, which is expressed by the score between 0 (best) and 100 (worst).

Figure 2: Colored map on Stats site
Figure 3: Scores indicating risks

With these renewed sites, we had several promotions such as CyberGreen Workshop at the APCERT Annual General Meeting & Conference 2016 (please find a blog post on the Conference here), a session on “CyberGreen: Improving Ecosystem Health through Metrics based Measurement and Mitigation Support” at the FIRST Regional Symposium for Arab and African Regions, and another CyberGreen Index proposed as “Measuring CyberGreen Readiness” at the 9th Annual National Conference on Cyber Security, Sri Lanka.

Figure 4: Green Index proposed at the Conference in Sri Lanka

In addition to the continued efforts by the CyberGreen Project team, there was another big news: “CyberGreen Metrics v.2 Method and Report Finalized.” As described in the news page, we will see another revision in the Info and Stats sites, hopefully in early 2017.

As such, we wish you to join CyberGreen to make the Internet safer together.

Thank you very much.

- Moto Kawasaki

Oct 30, 2014

TSUBAME Training and Annual National Conference on Cyber Security in Sri Lanka

Hello, this is Taki and today I would like to write about my trip to Colombo, Sri Lanka from September 30th through October 2nd.

I went with Tetsuya to conduct TSUBAME trainings at Sri Lanka CERT|CC and TechCERT, and to give a presentation at Cyber Security Week 2014 - 7th Annual National Conference on Cyber Security.

TSUBAME Training for Sri Lanka CERT|CC and TechCERT

Unlike our previous TSUBAME trainings in Jakarta and Vientiane, this time the trainees were only from the respective organizations.

The number of trainees for both sessions were relatively small, which allowed us to facilitate more discussions during the sessions. However, unlike the previous trainings we only had about a day of training for each, so focused mainly on the analysis of TSUBAME data, while incorporating how to access data through the portal, etc.


Tetsuya at the training at Sri Lanka CERT|CC


Training at TechCERT

It is our hope at JPCERT/CC that the trainings helped in enhancing the trainees’ data analysis skills. Discussions on how to collect data and how to analyze large amounts of data were very fruitful and gave us a lot to think about as we move forward as well. We hope to continue dialog with our colleagues in Sri Lanka about these topics.

7th Annual National Conference on Cyber Security in Sri Lanka

Also, Tetsuya and I attended 7th Annual National Conference on Cyber Security, which was a part of Cyber Security Week 2014 on October 1st. There were a little over 200 people in attendance for the event of which about 20 or so from outside of Sri Lanka. From what I gathered, most of the people in attendance were IT professionals, IT managers, CEOs, Lawyers etc from vendors and  service providers in Sri Lanka.

The conference started with a celebration with music and a ceremonial oil lamp lighting followed by the national anthem of Sri Lanka. The traditional oil lamp lighting ceremony was something I had never seen before.


Traditional oil lamp lighting

I also presented during the conference and spoke about JPCERT/CC activities focusing on activities where we collaborate globally, including the TSUBAME project, overseas CSIRT development, vulnerability handling among others.

I had some people come up to me with some questions during the social event, held directly after the conference. Some of the questions included TSUBAME and network monitoring / data analysis and others related to vulnerabilities, but more on the disclosure side.


Taki talking at the Conference

All in all, my first trip to Colombo was very nice, but all too short. I do hope that I get to visit in the future and spend some time taking in the sites as well as the history of Sri Lanka.

Lastly I would like to thank our colleagues from Sri Lanka CERT|CC and TechCERT for their wonderful hospitality. I can definitely say that I would not have enjoyed this trip as much as I did without them taking such good care of us.

That is it for today. I hope to write again sometime soon.

- Taki Uchiyama