PROFILE of IT SEcurity Center Information technology Promotion agency Japan

PROFILE of IT SEcurity Center, Information-technology Promotion agency, Japan FAX: +81-3-5978-7518 http://www.ipa.go.jp/security/ Mission: IT security enhancement in Japan IPA/ISEC as a public Security Information Sharing Center Information gathering & Study Public Information Service & Seminars Vender Community R & D Acquisition User Community Public Information Service & Seminars IT Security Information Service Input: R&D and study •Call for proposals •Qualifying proposals •Making contract Collaboration Research Acquisition Reports Technology Acquisition Software •Gathering •Analysis •Writing Independent Investigation Security Information Study & Statistics IT Security Information Service Output: Awareness Program Audience IT users Web based Service Security Policy & management Technical configuration Alerts (Virus, Vulnerability) Statistics Software, Reports IT vendors Secure Programming technique Common Criteria, SSE-CMM Cryptography Seminars IT Security Information Service as a Public Security Information Sharing Center IPA/ISEC IT Vendors Software Information for Secure Development IT Users Vulnerability Software Virus Information for Secure Deployment Secure Infrastructure Promotion Nature of issues Political, Assurance Activities Certification support: Common Criteria, MRA (STAR team) Cryptography algorithm recommendation: CRYPTREC project (CRYPT team) Management Technical Guidelines, Contribution to international standardization Common Criteria based evaluation: (SEAC Team) Cryptography algorithm evaluation: CRYPTREC project(CRYPT team) Current Organization (since May, 2001) ISG: Information Service Group: 18 staff IPG: Infrastructure Promotion Group: 18 staff PT: Planning Team STAR : Security Standard and Assurance Research team SEAC : Security Evaluation and Certification team AT: Analysis Team OT: Outreach Team CRYPT : Cryptography Research and Evaluation Team