IDSECCONF2018 Keynote Speaker - Agung Nugraha, S.IP., M.Si (Han)
1. Collaborative Defense to Strengthen
Indonesia Cybersecurity Posture
Agung Nugraha, S.IP, M.Si(Han), Plt. Deputi Bidang Proteksi
Badan Siber dan Sandi Negara
4. Cyber Threat Challenges (Nowadays)
Militer
Menerobos sistem kendali senjata &
pencurian informasi militerPolitik
Mempengaruhi pemilu dan penyebaran
informasi sesat untuk mengganggu stabilitas
global
Infrastruktur
Mematikan sistem kendali energi,
transportasi
Finansial
Menjual informasi finansial di black market
IoT
Mengganggu operasi proses manufaktur &
menerobos perimeter keamanan rumah Kesehatan
Pencurian informasi rekam medis dan data
pribadi lainnya
Penerbangan Komersial
Menjatuhkan pesawat, mengacaukan
posisi pesawat tanpa harus onboard di
pesawat 4
5. No (Critical Infrastructure) Can Escape from Cyber
Attacks
Source :
https://ec.europa.eu/epsc/publications/str
ategic-notes/building-effective-european-
cyber-shield_en
Data Privacy
Disruption Service Distrust of Democracy
Financial Gain
Perth Airport Hacks
December 2017
Cause :
Vietnamese hacker used
third party contractor
credentials
Impact :
stole sensitive details such
as building plans and
security details.
Cause :
Magecart actors (source :
RiskIQ Intelligence)
Impact :
Data breach of 380,000
customer
September 2018
British Airways Hack
Cause :
Malware
Impact :
Flight plan information
back to manual procedure
Bristol Airport
September 2018
SingHealth Data Breach
Juli 2018
Cause :
Intrusion
Impact :
Around 1.5 million data
leak, including prime
minister data
Boeing Ransomware
March 2018
Cause :
WannaCry ransomware
Impact :
Shutdown 777 automated
spar assembly tools due to
malware infection
Gas Pipeline Attack
April 2018
Impact :
4 US major companies –
disrupted data
communication services
5
7. Attacker Always Work Together
Scan4You – Counter Antivirus Services Dark web Selling your Credential
7
GitLab for sharing exploit code
8. Why We Need to Collaborate ?
8
Attacker need
only in a
minutes to
compromised
Defender need
days, weeks or
even months to
detect/discover
the attack
9. Why We Need to Collaborate ?
9
Biaya
(Cost)
Complexity
Biaya
(Cost)
Complexity
Attacker Point of View Defender Point of View
“Biaya yang diperlukan oleh penyerang
untuk melakukan serangan yang
kompleks makin hari makin murah”
“Biaya yang diperlukan untuk
bertahan terhadap serangan
yang kompleks makin hari
makin mahal”
10. Why We Need to Collaborate ?
10
Soliditas Pelaku Serangan
Mereduksi waktu untuk
merespon serangan
Bertahan secara proaktif
Mereduksi resiko dalam
jangka panjang
Meningkatkan imunitas
terhadap serangan
11. Why We Need to Collaborate ?
• Defenders are overtaxed by the sheer volume of information they
must deal with, and also suffer from a skills gap.
• No organization has the resources to stand alone against nation-
state actors, let alone the myriad of criminals, hacktivists, and other
threat actors.
• As a result, collective defense is necessary to cope with the present
and future cyber threat.
• Companies must band together to gain broader awareness of the
threats targeting their sector, and to jointly mitigate threats aimed at the
group.
• For collective defense to function, information sharing must occur at
network speed, across a broad base of indicators, risk-models, and
enrichment resources.
• With such a system in place, an attack on any organization in the
collective can be immediately addressed by all
11
15. 15
“(Ingatlah) Kechilafan Satu Orang
Sahaja Tjukup Sudah Menjebabkan
Keruntuhan Negara”
Mayjen TNI Dr. Roebiono Kertopati
(1914 - 1984)
Bapak Persandian Republik Indonesia