Presented by Che-Hoo Cheng at the 44th Asia-Pacific Advanced Network (APAN) meeting held in Dalian, China from 26 August to 1 September.

1. APNIC Security Outreach
Activities
Che-Hoo Cheng
Development Director
APNIC

2. APNIC’s Vision:
A global, open, stable, and secure Internet that serves the entire Asia Pacific
community.
How we achieve this:
• Serving Members
• Supporting the Asia Pacific Region
• Collaborating with the Internet Community
2

3. Security Outreach @ APNIC

4. Goals
1. Support members efforts to maintain highest level of
operational security in their networks
2. Engage and support development of security community in
the Asia Pacific
3. Engage with public safety community, including Law
Enforcement organisation

5. Activities
Activities
1. Training & Technical Assistance
2. Awareness Campaigns
3. Speaking engagements
4. Projects

6. Approach
1. Multi-stakeholder
2. Collaboration & Partnership
3. Community Building

7. Collaboration
1. MoUs
o Asia Pacific Computer Emergency Response Teams
(APCERT)
o Forum of Incident Response and Security Teams
(FIRST)
o Sri Lanka CERT
2. Many partners for specific activities or
projects

8. Highlights

9. Training & Technical Assistance
• Network Security Fundamentals
• Various Formats
o Workshop (3-5 days)
o Weekly E-learning
• Standalone or part of a bigger event (i.e. NOG
meetups or APNIC Conferences)
• Support from community trainers
• More information: https://training.apnic.net

10. Introduction to Cyber Security Course
• Collaboration with JICA 2016
o Launched March 2017
• E-learning
o Self-paced
o Certification upon course completion
• https://academy.apnic.net
10

11. Routing Security
• Risks
o Errors / Misconfiguration
o Route Hijacking
• Resource Public Key Infrastructure (RPKI)
• Ready to ROA Campaign to encourage ROA
creation and create awareness on routing
security
• More information: https://www.apnic.net/roa

12. Linking Communities
• Collaboration with FIRST & APCERT to
organize security related tracks at APNIC
Conferences & NOGs events
• Sharing of trends, insights & best practices
• Upcoming:
o FIRST Regional Symposia @ APNIC44 in
Taichung, TW

13. CERTs/CSIRTs Capacity Development
• Since 2014, supported JICA & KISA to deliver
training to national CERTs/CSIRTs in the region
• With the APNIC Foundation, focus on enhancing
CSIRT/CERT Capabilities in the Pacific Island
countries
• APNIC was directly involved in the establishment
of Tonga CERT in 2016
• Starting to work with Asi@Connect and GEANT for
APAN Community at APAN 44 in Dalian, China

14. Law Enforcement Engagements
• Provide support for training to national LEAs &
INTERPOL
o INTERPOL Global Complex for Innovation in Singapore
• Collaboration with Team Cymru to organise Cyber Crime
Conference in the AP region
o 2016 – Bangkok, Thailand
o 2017 – Phnom Penh, Cambodia

15. Community Honeynet Project
• Started in 2017
• Collaboration and information sharing from
honeypots deployed in various parts of the
region
• Currently 6 partners
• Support for the Global Honeynet Project
Conference in Canberra (Nov 2017)

16. Involvement in Global Security Organizations
Organizations APNIC Staff Role
1 Global Forum for Cyber Expertise (GFCE) Paul Wilson Advisory Board Member
2 ICANN Security and Stability Advisory
Committee (SSAC)
Geoff Houston Expert
3 INTERPOL Cyber Crime Expert Group Adli Wahid Member
4 Forum of Incident Response and Security
Teams (FIRST)
Adli Wahid Board Member

17. APNIC Blog
• Security related blog posts from members
of the community
• Share your experience and insights as
guest bloggers
• https://blog.apnic.net
17

18. Thank You!
adli AT apnic.net
jamie AT apnic.net
chehoo AT apnic.net