This is a picture of Suguru Yamaguchi smiling when I told him I'd blog him.
Today was the 4th NPA Security Council meeting. This is a committee focused on studying computer network related risks and countermeasures. We talked about last year's report and what we will do moving forward. This is one of the more interesting groups I am in since most of the people involved are fairly down-to-earth. There are people from Microsoft, Rakuten, Yahoo, JPCERT, Police, Foreign Ministry, the Cabinet Office, etc. I particularly enjoy these meetings because Yamaguchi-san who runs JPCERT is a very outspoken and intelligent guy who doesn't pull any punches.

I said that the US is taking a very different stance towards security since 9/11 and that many of the new security measures that the US are taking may in the long run end up hurting national security since a great deal of privacy is being breached, agents are being allowed to work with shady characters for short term gains which may end up being long term losses and the whole TIA thing may not work. I suggested that we do an extensive analysis of the US anti-terror measures and identify whether each of the measures are 1) things we should copy, 2) things we should ignore, and 3) things that are bad for the Japanese people. I urged everyone not to allow Japan to get suckered into doing something stupid in response to US pressure. In particular, I pressured the person from the Foreign Ministry to be aware of these risks.

There is a chart that the NPA (Japanese pdf) produced showing which countries many of the portscans and pings were coming from. Yamaguchi-san pointed out that this didn't necessarily reflect the source and I concurred.

I talked a bit about the financial services sector problems with organized crime and hacking and that we should focus on and analysis of organized crime rather than do general surveys of smaller crimes and hacker rings.

1 Comment

I am in the Joint Support Team of the US Joint Forces Command supporting the JSDF in exercise play. I need to know where I can go to research the security orders that dictate how the joint JPA-JSDF command and control procedures in their various states of emergncies (similar to our DEFCON threats).

Leave a comment

About this Archive

This page is an archive of recent entries in the Business and the Economy category.

Books is the previous category.

Computer and Network Risks is the next category.

Find recent content on the main index.

Monthly Archives