Tuesday, December 16, 2008
The government plans to invest 230 billion won (about $168 million) through 2013 to support local companies in the computer security industry.
The plan announced by the Ministry of Knowledge and Economy, Monday, promises lavish investment for research and development (R&D) in key areas such as network security and convergence technologies and training for about 3,000 security experts, including ``ethical hackers.'' It also plans to host an international hacking competition.
``The importance of security technology is being stressed around the world now, as countries look for better ways to prevent crime, terror and disasters,'' said Lee Dong-geun, a ministry official said.
``We are expecting strong participation from businesses and the academic sectors to spur growth of the industry. Korean companies currently control 8 percent of the international security market, but through our investment plan, we want to boost that number to 13 percent,'' he said.
The government will spend 150 billion won through 2013 to invest in research in the three key areas of network security, physical security systems and convergence technologies.
The advancement in digital technologies is blurring the boundaries between the fields, ministry officials said, and possible growth projects include combining network solutions with hardware technologies, such as developing black box-like data-recording devices for vehicles and tracking solutions based on RFID (radio frequency identification) technology.
Government spending has been considered crucial for the industry. It is estimated that more than 60 percent of the 590 information security firms are small-to-medium sized companies with less than 600 million won in paid-in capital.
The government also plans to spend 30 billion won to help companies, institutions and schools train quality personnel, enabling the industry to secure consistent sources of talent.
By establishing master's courses at major universities and also operating an ``information security academy,'' the government expects to train more than 3,000 security experts through 2013.
The government is planning to host the country's first international hacking competition next year, which is part of efforts to train about 1,000 hackers who will lead research into the vulnerabilities of security systems.
It is also looking to mandate more government clients to use local security products and introduce a new certification market for security products that will help enhance their reputation in overseas markets.
The local information security industry was worth around 3.1 trillion won in 2007, with the sector generating about 107.8 billion won in exports.
The sector is expected to grow into a 18.4 trillion won market with 3 trillion won in exports by 2013.
The Internal Revenue Service should bolster network and information security by improving how it manages audit logs, the Treasury Inspector General for Tax Administration said.
TIGTA made the recommendation while acknowledging that the agency has effectively deployed systems to detect network intrusions at Internet gateways.
Audit logs record who accessed a computer system, what operations they performed and when, TIGTA said in a report released today. The auditor redacted portions of the report.
The IRS did not properly save and review its audit logs, which increased the likelihood that intruders could use the Internet to gain access to sensitive taxpayer data without detection, the report states.
Auditing system logs is essential for detecting potential security events, such as hacking attempts and other threats, said Michael Phillips, TIGTA’s deputy inspector general for audit. Proper management of audit logs ensures that operations performed on a system can be traced back to an individual at a specific time, he added.
To minimize the risk to taxpayer data, the IRS has consolidated about 95 percent of its Internet traffic into a limited number of gateways, the report states, although TIGTA redacted the number of external connections. The Office of Management and Budget has directed all agencies to reduce the number of gateways they have under the Trusted Internet Connections initiative.
The IRS uses firewalls, routers and intrusion-detection systems for each of its Internet gateways to make sure that only authorized traffic passes through, the report states.
Although the agency effectively operated the access controls, TIGTA recommended that the IRS Enterprise Networks organization establish and regularly test security configurations on firewalls and routers.
“Its systems administrators should configure the firewalls and routers to prevent unauthorized traffic from gaining access to the IRS internal network,” Phillips said.
Based on TIGTA’s recommendations, Arthur Gonzalez, IRS’ chief information officer, said he would:
• Make sure the IRS conducts an independent review of the audit logs for routers and firewalls.
• Implement a redundant audit log collection system for firewall and router events.
• Use an automated security application to conduct biweekly tests of routers and firewalls.
The IRS has already configured audit logs to use Coordinated Universal Time for time stamps and correlate security events across devices regardless of their physical location, Gonzalez said.