BRUNEIDARUSSALAMCYBERCRIME
Situation,Challenges&Measures
ASEANPLUSTHREECYBERCRIMEWORKSHOP18-19JULY2016,SINGAPORE
AboutBruneiDarussalam
• Location:AttheheartofSouthEastAsia
• CapitalCity:BandarSeriBegawan• Area:5,765sqkm• CurrentPopulation:430,000
population(est2015).• Independence:February1984
fromtheBritishProtectorate• PoliticalSystem:Constitutional
absolutemonarchy• Internetpenetration:319,000
CyberBullying • Case : 2012, 27 year old man sentence 10 months jail, pleaded
guilty outraging modesty of woman by uploading and circulating obscene pictures and videos through facebook
Internet Hacking – May 2010, A Filipino man sentenced 6 months prison pleaded
guilty of hacking the Internet Connection – Accessing Internet by hacking the landlord ‘secured’ wireless
connection to commit other crimes ( stolen credit card to purchase prepaid mobile topups )
Challenges
• Terrorism– Bruneiissurroundedbycountriesfacingrealthreatsfromterrorism.
– SafeHaven&Transitpoint– TotalNo.ofFacebookusersinBrunei–255,600.Ithasincreasedbymorethan15,700usersinthelast6month.Majorityoftheusersarebetweentheageof18to24.
– Widespreaduseofsocialnetworkingsitesi.eFacebook-BruneiranksasoneofthehighestinAsia-Facebookpenetrationintermsofpopulation.(PotentiallyRecruitingandradicalizelocalBruneipopulation)
Challenges
• CloudComputing
– Transitioningto‘Cloud’offersimmensebeneRitsespeciallyintermsofcost,Rlexibility,scalability,andagility.
– MajorchallengesinthejurisdictionoflocationofserversintheCloud(issueifcloudserverinothercountries),thelegalrightstoLEAandconcernsoversecurityandprivacyofsensitivebusiness,governmentandpersonalinformationhostedintheCloud.
Challenges
• ProsecutionofCybercrimerelatedcases– Co-operationoftelecomservices(IPTracing)– NomechanismtoprioritizecasesthatneedsInternationalassistance(noproperrisk-assessmentstandard)
– Identifyingoftheperpetrators– GlobalProblem:DarkWeb
Measures
• CybersecurityWorkingGroup(CWG)– Strategiclevelcommittee(created2016)– EstablishmentofCybersecurityWorkingGroupundertheperviewoftheNationalSecurityCommittee,PrimeMinister’sOfRice
– InformationSharing&formulatejointactionplansoncybersecurityrelatedmatters.
Measures
• AppointmentofInformationSecurityOfTicers(ISO)– GovernmentProtectiveSecurityManual(PSM)reviewedtoincluderequirementfortheappointmentofInformationSecurityOfTicers(ISO)toallgovernmentMinistriesandDepartment
– Establish,maintain,implementandadministersecuritypolicies,standards,guidelinesandproceduresandsecurityemergencyactionplans.
– Assist/focalpointfortheGCERT&(LEA)intheeventofcybersecuritybreaches
Measures
• PlannedEstablishmentofNationalCybersecurityFramework– Tocoordinateallcybersecurityrelatedeffortsandriskmitigationfrommultiplecyber-relatedagencies.
– ReportsdirectlytotheexecutiveCybersecurityWorkingGroup
– Involvesassessmentofthecurrentthreat,risks,nationalcapabilityandgapanalysisspanningtoidentiRicationvulnerabilitiesincriticalinfrastructuretostakeholdersandtheirnationalobligations.
Measures
• ConductingITSecurityAwarenessPrograms– MinistryofEducationforprimary/secondary&universitystudents
– InstituteofPublicServiceforGovernmentCivilServants
– Awarenessontraditional&cybercrimes– CommunityOutreachprogram(COP)
Conclusion
• Cybercrimeisalwayschanging,fromtechnologytothethreatsfaced,andenforcementagenciesneedtokeepuptodateintermsoftraining,alongwithsharinginformationbothdomesticandinternational.
• Moreeffortneededinraisingawarenessofcyber-relatedcrimeswithinthepublicconsciousness,soasnottobeeasilytakeninbyscams.