Joint Defense of Communication Network Cyber Security
- Policy
According to the "2-1 Internet Hacking Detection and Cyber Security Notification System Building Plan" of the "Executive Yuan the promotion of the ‘Creating Cyber Security Culture, Promoting Cyber Security Value’ Industrial Technology Strategy Conference (2010-2013)," announced by the Executive Yuan on December 30, 2009, the former supervisory authority, National Communications Commission (NCC), was responsible for detecting internet hacking, building the cyber security notification system, and providing cyber security intelligence to major providers of telecommunication so they may jointly defend governmental and educational networks. Additionally, the NCC issued "Guidelines for Response Operations of Information and Communications Environment" and worked with government communications security divisions of the Executive Yuan’s National Information and Communication Security Taskforce to conduct joint cyber security defense. In 2011, the NCC launched the "Internet Hacking Detection and Cyber Security Notification System," which notifies internet access service providers of online cyber security incidents so they can address them and jointly defend governmental and educational networks. In November 2012, with view to reinforcing the efficiency of cyber security notification and response, the NCC completed the Cyber Security Automatic Notification System of Telecommunications CIIP, which connects the cyber security response systems of the telecom providers - Performance
To advance cyber security joint defense mechanisms of communication networks, work in accordance with the fifth National Cyber Security Program, and implement cyber security incident notification and response according to the Cyber Security Management Act, the NCC began building the new "Cyber Security Monitoring, Analysis, and Notification Platform of the Communication Field" in 2017, which includes C-SOC, C-CERT, and C-ISAC. By notifying and sharing information with competent authorities, operators in the communications field, or ISACs in the field of joint defense, the goal was to create a comprehensive joint defense network in which all parties can participate in cyber security defense affairs to lower the impact of incidents and increase response efficiency. On November 15, 2018, the NCC officially launched the "National Communications and Cyber Security Center" (NCCSC), which not only includes the Cyber Security Monitoring, Analysis, and Notification Platform of the Communication Field but also integrates the C-NOC to monitor the normal operation or malfunction of the six communications networks including mobile communications, fixed communications, satellite communications, cable television, international submarine communication cables, and the DNS domain. Through the four facets of early warning enforcement, continuous monitoring and maintenance, notification and response, as well as assistance with improvements, the NCCSC strengthens the cyber security of the communications networks in Taiwan. In 2020, the platform further included terrestrial radio and television businesses, expanding the number of networks from six to eight fields. The platform also accumulated as many as 112 members, including all specific non-government agencies under the NCC’s supervision and critical infrastructure providers of the communications field. Between January and March 2022, the number of cyber security incidents and information processed by the platform was 211,701, showing that it has become a solid, comprehensive internet joint defense mechanism.
After the establishment of the Ministry of Digital Affairs, the work above has been transferred to the jurisdiction of the Ministry.
Keyword(s)
Data Source: Department of Communications and Cyber Resilience
Create Date: 2022-08-27
Update Date: 2024-01-31