AIC InfoSec 2000

1
AIC InfoSec 2000
The Need to Defend NZs National Information
Infrastructure
Mike Pearson
2
Topics for today

• What is a NII ?
• Who cares anyway ?
• Whos out to get it ?
• Whats the current situation ?

3
What is a NII ?
National Security
CivilGovernment
PrivateSector
4
What is a NII ?
Army, Navy, Air Force GCSB, SIS Police, Civil
Defence Foreign Affairs
Treasury, IRD, etc NZ Post Water, Sewerage
Banking and finance Telecommunications Electricity
Information
5
Who cares ?
6
Who really cares ?
7
Threats Effects

• Natural
• Accidental
• Deliberate
• Normal business risk

• Destruction
• Disruption
• Destruction
• Denial
• Degradation
• Deception
• Data alteration
• Theft
• Interception

8
Central Auckland is plunged into darkness as the
last of the four main power cables into the city
fails. The 110,000-volt cables have collapsed
after an unexplained overload, being blamed on a
computer error.
9
The power outages have affected an estimated
50,000 inner city workers and 6,000 residents of
the Auckland Central Business District (CBD). The
area affected is roughly defined by Quay Street,
Hobson Street, Karangahape Road, and Symonds
Street.   Most of the large businesses in the
affected area, largely insurance and banking
concerns, have moved their operations out of the
blackout zone, many to Wellington. Courts have
closed and moved to ten different locations,
including motels, schools and church halls --
even the Ellerslie Racecourse. Ports of Auckland
is trying to save nearly 1,000 refrigerated
export containers, holding exports worth NZ25
million. Over 10,000 containers for the next
week and the involved ships are being diverted to
Tauranga. Some smaller businesses are threatened
with bankruptcy. The Auckland City Council have
established a NZ2 million relief fund for
suffering retailers. The Auckland Mayor, has
called on the government for financial
assistance. There is doubt that this will
eventuate although the Prime Minister and five
cabinet ministers will be visiting Auckland this
week for first-hand view of situation.
10
Who ?

• Non-hostile persons
• Hackers
• Insiders
• Issue Motivated

• Organised crime
• Competitors
• Private sector
• Terrorists
• Foreign states

11
Sources of Attack
Source 1999 CSI/FBI Computer Crime and
Security Survey Computer Security Institute -
www.gocsi.com/
12
Why ?

• challenge
• access to resources
• embarrassment
• extortion

• invade privacy
• gain advantage
• recognition

13
Types of Attack
Source 1999 CSI/FBI Computer Crime and
Security Survey Computer Security Institute -
www.gocsi.com/
14
Current situation
15
Current situation (Intl)

• US
• CIAO, NIPC, ISAC
• CERT/CC
• FIRST

• Canada
• Nothing new
• United Kingdom
• BS7799, ccure
• UNIRAS, HM Govt CERT

16
Current situation (NZ)

• Government
• GCSB / SIS
• Crime Amendment Bill No.6
• Business
• NZCS - SIG
• NZ Info Security Forum

• Standards
• AS/NZS 4444.2 Information Security
• NZS 6656 Trustworthy Computer Systems

17
Conclusion

• Threat is real
• Threat is growing
• Vulnerability is growing
• Low security awareness

• There is no Tautiaki
• NZCERT
• NZNII Committee

18
AIC InfoSec 2000
The Need to Defend NZs National Information
Infrastructure
Mike Pearson