NEC's initiatives and achievements.
NEC partners with INTERPOL to strengthen worldwide security against cyber crime.
In a bid to strengthen the global fight against cybercrime, NEC signed a partnership agreement with INTERPOL in 2012 to fight cybercrime in the INTERPOL Global Complex for Innovation (IGCI) in Singapore. NEC delivered a digital forensic platform and various other technical resources for IGCI, which began full operations in 2015. IGCI offers essential assistance for national authorities in terms of investigating and identifying cyber crimes and criminals, research and development in the area of digital crime, and digital security. NEC is keen to participate in further collaborations between law enforcement and the internet security industry to contribute to the stability of security for businesses and communities throughout the world.
Working with the Singapore government to train cyber security professionals.
NEC has contracted with the Singapore Economic Development Board to accept trainees for the Strategic Attachment and Training (STRAT) Programme. This program aims to help improve the cyber security of Singapore and surrounding countries, develop personnel with practical skills, and conduct joint research.
NEC joins AIS to reinforce cyber intelligence.
NEC participated in the Automated Indicator Sharing (AIS) initiative implemented by the United States Department of Homeland Security (DHS) that swiftly shares cyber threat indicators between the government and the private sectors.
AIS enables the swift sharing of indicators on threats from cyber attacks (such as IP addresses, domain names, sender addresses of phishing emails) between the United States Federal Government and private companies and organizations in the United States and abroad. This is accomplished via the information system provided by the National Cybersecurity and Communications Integration Center (NCCIC) under the umbrella of the DHS. This enables a threat from the latest cyber attack to be swiftly identified, preventing the damage of a particular threat from spreading.
Japan Cybercrime Control Center collaboration (JC3*) links industrial, academic and public sectors.
NEC is a full member of the Japan Cybercrime Control Center (JC3), a non-profit organization seeking to reduce cyber space threats by creating cooperative frameworks between the industrial, academic and public sectors.
JC3 promotes a pre-emptive, comprehensive response to cyber threats by capitalizing on the individual strengths of industry, academic research institutes and law enforcement agencies, and the police's stronger investigative rights.
JC3's ultimate aim is to encourage cooperation and information sharing among relevant institutions worldwide, so they can pinpoint the source of any threat, and localize or minimize any resulting damage.
- *NEC's Senior Officer, Takaaki Shimizu, was appointed JC3's first Representative Director.
Cooperating with the MIC's practical exercise to defend against cyber attacks
Since 2013 NEC has been cooperating with the "Experimental exercise to analyze and prevent cyber attacks" conducted by the Ministry of Internal Affairs and Communications (MIC). The purpose of these tests is to have system administrators of government and important infrastructure systems conduct Cyber Defense Exercises with Recurrence (CYDER) to protect against targeted attacks in a large-scale simulated ICT environment. From 2016, NEC has also been cooperating with CYDER programs for public organizations in 11 areas around Japan, and is helping to improve the incident handling skills of information system managers.
Providing cyber attack defense training for ASEAN countries to develop security personnel.
NEC has been providing cyber attack defense training for officials from governmental institutions responsible for cyber security in six members of the Association of Southeast Asian Nations (ASEAN) (Cambodia, Indonesia, Laos, Myanmar, the Philippines and Vietnam). This defense training aims to improve incident response to targeted cyber attacks on ASEAN countries. Training sessions feature lectures on the latest threats and security measures, as well as drills similar to the Cyber Defense Exercise with Recurrence (CYDER), which are practical cyber attack defense drills.
Also NEC contributes by providing CYDER for officials from government related institutes in Thailand and Malaysia.
NEC has established a JAIST endowed lecture series to train cyber security engineers.
From 2015, NEC has been providing an endowment to the Japan Advanced Institute of Science and Technology for a course entitled "Cyber Range Organization and Design" to enable advanced research into cyber security, and to develop personnel. Course participants research and develop cyber ranges (cyberspace training areas), and use them to design and develop education programs. The education programs that are developed are made available to other universities and institutions of higher learning.
NEC is working on reinforcing social infrastructure by conducting proofs of concept (PoCs) for targeted attack measures in Shinagawa Ward.
NEC was an early proponent and is a proactive user of SDN (Software-Defined Networking). When malware infections, website falsification or other problems are detected, the SDN network control functions automatically implement an initial response, such as isolating the communications of infected client PCs and servers, and moving them to a quarantine network.
NEC conducted a joint PoC with Shinagawa Ward to construct new security functions that use SDN, and launched the production system in 2016. NEC is aiming to strengthen security measures for social infrastructure through automatic cyber attack control solutions that use SDN.
NEC channels intensive internal and external security intelligence into its one-stop cyber security solution: The Cyber Security Factory.
When an incident actually occurs, information, technology, and personnel are all needed to implement a quick response. To that end, in 2014 NEC launched the Cyber Security Factory as a center for cyber security measures. This specialized organization coordinates with all companies within the NEC Group and our external collaborative partners, and brings together specialists who are experts in cyber security. This organization collects and shares advanced technologies, the latest attack methods and malware trends, and measure know-how. At the same time, it provides one-stop support that includes introduction and construction of security systems, 24/7 operations monitoring, and emergency response when incidents occur. Not only Japan, new centers were opened in Singapore, Europe and North America to reinforce our global monitoring infrastructure.
Also to make specialist's monitoring work sophisticated and efficient, threat analysis system using AI technology was deployed on a full-scale in 2017.
Cyber security factory: major functions
- Monitor customers' networks and websites 24/7
- Analyze/evaluate system resilience using cyber attack simulations
- Analyze cyber attack trends, share information and knowledge
- Use advanced techniques to develop sophisticated security technology
- Improve technological understanding of security managers, staff training
- Preserve and inspect evidence through advanced digital analysis
Collaborative partners (random order)
- LAC Co., Ltd.
- FFRI, Inc.
- Trend Micro Inc.
- S&J Corp.
- NRI Secure Technologies, Ltd.