-
Information Technology for aSafe and Secure Society in Japan:Toward a Cyber- Physical Solution
- Fordham University Press
- Chapter
- Additional Information
207 This chapter introduces the topic of information technology for a safe and secure society in Japan, showing an emerging trend toward a cyber-physical solution. Notable security incidents in the United States and Japan, and the Japanese national strategy for information security, are discussed first, followed by a discussion of emerging security technologies in Japan (such as a multiple risk communicator), cryptography, and other core elements. Introduction Japan, like every industrialized nation, has experienced a great rise in notable security incidents. To deal with this increasing problem, the National Information Security Center has been established; its goal is to create a National Cyber Security Strategy for Japan. Japan’s overall strategy is to be one of the world’s most advanced countries in terms of cyber security by 2020. Information Technology for a Safe and Secure Society in Japan: Toward a Cyber-Physical Solution Kazuo Takaragi 208 Kazuo Takaragi Notable security incidents: Notable security incidents have occurred every six or seven years since 1982 (Figure 1). In 1988, Internet worms caused an estimated loss of about $111 million over several days in the United States. In 2007, personal information leakage caused a total loss of about $22.2 billion in one year in Japan [17]. Figure 1 shows that the economic loss due to security incidents is increasing geometrically. Cases in Japan include physical forgery coupled with unsecure information handling. Recent security incidents in Japan: Several illegal immigration cases in which fake fingerprints were used have occurred in Japan since January 2008. At least eight people have arrived in Japan from an Asian country and used fake fingerprints to evade the biometric checks at immigration control [19]. Furthermore, at a university in Tokyo, a flash memory device containing information about more than 10,000 students was taken by an academic staff member to be used at home. Information in the files on the device was leaked onto peer-to-peer networks through a personal computer used by the staff member at home [18]. Figure 1. Notable security incidents since 1982. Notable security incidents Amount of damage ($M) 1 US$ = 90 Yen 25,000 20,000 15,000 10,000 5,000 0 JP Bank card forgery JP Pachinko card forgery US NIMDA virus US Internet worms 1982 1988 1995 2001 2007 Year 0.014 111 555 700 22,200 JP Personal information leakage [44.200.240.205] Project MUSE (2024-03-29 13:35 GMT) IT for a Safe and Secure Society in Japan 209 Security market in Japan: The security market in Japan is still growing despite the global economic downturn. For example, the world market for security devices and tools was $3.728 billion in 2009 and is projected to be $5.305 billion in 2013 (Figure 2) [12]. The global market share of Japan was about 13 percent in 2007 (Figure 3) [13]. National Information Security Center: The National Information Security Center (NISC) was established in Japan in April 2005. Under NISC, the Information Security Policy Council (ISPC) was formed in May 2005. It makes decisions on the national strategy for information security for governmental agencies, critical infrastructures , businesses, and individuals. It also cooperates with foreign countries to establish an international reliance for security [7]. Figure 2. Security market in Japan [3]. 1,000 2,000 3,711 3,728 4,052 4,405 4,734 5,035 0 6,000 Security Market in Japan 2008 2009 2010 2011 2012 2013 1 US$ = 90 Yen ($M) 5,000 4,000 3,000 1,384 1,416 1,591 1,862 2,158 2,405 FY: April to next March 2009: Estimated value 2010–2013: Predicted value Services Devices & Tools 210 Kazuo Takaragi National Cyber Security Strategy in Japan: A comprehensive national security strategy for Japan for 2010 to 2013 was published by the NISC in May 2010. It depicts the current problem of cyber attacks and their countermeasures. In June 2010, the NISC published a draft of the plan “Secure Japan 2010.” Its goal is for Japan to become one of the world’s most advanced countries in terms of information security by 2020 [7]. IT risk management by stakeholders is considered important. The plan strives to achieve security measures acceptable to those stakeholders. The plan describes government plans to facilitate smooth risk communication among stakeholders, such as concerned organizations and government agencies in charge of critical infrastructures. Emerging Security Technologies in Japan This section covers various emerging security technologies in Japan, beginning with an overview of...