1 / 27

Introduction to APAC

Introduction to APAC. November 2012. Survey of APAC. Anti-Phishing Alliance of China (APAC) was established on July 18, 2008.

reginaldn
Download Presentation

Introduction to APAC

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Introduction to APAC November 2012

  2. Survey of APAC • Anti-Phishing Alliance of China (APAC) was established on July 18, 2008. • It’s composed of domestic banking and security institutions, e-business websites, domain name registration authorities, domain name registrar, experts and scholars, etc, and it currently has 492 members. • It’s a trade association established for combating against crimes that occur frequently in Internet sector, such as identity theft and fraud by phishing website, junk mail, etc. • It’s the only authoritative and public welfare organization establishedto fight against phishing websites in China. • APAC has preliminarily established a quick settlement mechanism to prevent the hazard by suspending CN domain name resolution of phishing websites, etc so as to ensure a trusted network. • CNNIC is a domain name registration administration agency , acting as the secretariat of APAC.

  3. Positioning and slogan of APAC Positioning: • An authority and expert in website phishing governance in China • A website phishing data sharing platform in China • A think tank for governance of illegal network application and phishing website campaign policy of Chinese government • A bridge for communication and mutual-aids between Chinese government and enterprises in Internet application sector. Slogan: Authoritative, professional, public welfare and sharing

  4. Architecture of APAC APAC Steering Committee of Experts Secretariat CNNIC APAC members Third-party certification institution Leaders of MIIT, CAS , Security Center and National Computer Virus Emergency Response Center, And legal experts Financial and securities firms E-business firms Security firms Domain name registrars APAC supporting organizations CNCERT National Computer Virus Emergency Response Center

  5. APAC members have increased to 492 by Nov. 2012 • Secretary: • CNNIC • APAC supporting organization: • KNET • APAC members: • Banking and securities: 372 • China Unionpay, Bank of China, Industrial and Commercial Bank of China, China Construction Bank, Postal Savings Bank of China, etc. • CITIC Securities, Haitong Securities, Huatai Securities, GF Securities, Guotai Junan Securities, etc. • E-business: 32 • Alibaba, Alipay, Tencent, Sina, Baidu, Ctrip, etc. • Network security: 16 • TREND Micro, Netcraft, Rising, Kingsoft, Jiangmin, Opera, Maxthon, 360, etc. • Domain name registration administration agency and registrars: 72 • WWW.NET.CN, Xinnet, Jiangsu Bangning, Shanghai Yovole, Shanghai Oray, etc. • Partners: • Securities Association of China, 12321, APWG, Microsoft, etc.

  6. Internal work of APAC • Monthly briefing of phishing website treatment • APAC Lab • Anti-phishing technology research • Active detection of phishing websites • Website of APAC www.apac.cn • E-mail of APAC Reporting email:jubao@apac.cn Member contact: fdy@apac.cn

  7. APAC Lab – Active detection of phishing websites • Relying on CNNIC, APAC Lab was established, which is capable to actively locate suspicious phishing hosts and determine phishing websites by massive DNS, IP and other basic website data and as well as rich phishing attack samples. • Data source • DNS recursive server resolution log • DNS authoritative server Zone Files • Detection technology • English domain name similarity testing • IDN Chinese domain name equivalence computation • Phishing host IP pegging technology • Phishing host digging algorithm based on bag of words and Bayesian classification model • Algorithm for heuristic phishing page determination

  8. Establish and constantly improve the reporting and treatment process APAC established phishing website treatment process In the past four years, the phishing website treatment mechanism has brought into play its rapid and high efficient advantages through the coordination of each party, and played an active role in combating phishing websites under CN and non-CN domain names. The researchers of APAC also actively attempted “heuristic feature detection”, “mode identification” and other methods for detection to further improve the treatment efficiency and expand the scope of acceptance. 1.APAC members/users report phishing websites 2.The secretariat and certification institution verifysthe phishing websites Rapid phishing website treatment process 3. Suspend resolution/delete URL, push them to partners for screening 4. Phishing websites are closed

  9. Phishing website treatment method • Phishing websites under CN domain names • Noticing domain name registrars to delete URL or suspend domain name resolution • Non-.CN phishing websites registered in China • Coordinating domestic domain name registrars to delete URL or suspend resolution • Phishing websites under non-.CN domain names registered abroad • Pushing phishing website URLs to partners, and indicating visit or isolating them

  10. Extensively carry out international exchanges and expand partnership • Established an interactive mechanism with USA-based Markmonitor Company, Dot TK Registration Regulatory Agency and other international organizations to jointly deal with phishing websites. • Participate in meetings of APWG members, anti-network crime summit and JPCERT annual meeting, and carry out extensive communication with other peers of this industry on data sharing, coordinated phishing website treatment, technical research, etc. • It’s currently difficult to handle the phishing websites accessed from abroad, and APAC has pushed anti-phishing data to mainstream browser, network security and search engine suppliers in a bid to ensure maximum protection during the main procedures of netizens’ access to Internet.

  11. Extensively carry out international exchanges and expand partnership • APAC Secretariat attended APWG Anti-network Crime Summit held in Kuala Lumpur and Prague in 2011 and 2012 respectively, and carried out extensive friendly exchanges with other peers from this industry on the aspects of data sharing, joint phishing website treatment, technical research, etc. • APAC Secretariat attended three annual meetings, i.e. APWG 2010-2012. • APWG affirmed the contributions of APAC to online crimes, and expressed the acknowledgement to APAC for monthly provision of data.

  12. Domestic industrial exchanges and influence – Financial industry • APAC has established strategic partnership with China Banking Regulatory Commission, Securities Association of China, etc, and held workshops on banking and securities; and invited representatives from banking and securities industry, national domain name security center, security service suppliers and browser suppliers and other APAC members. • Convenes industrial workshops regularly, and has certain influence in the network security industry.

  13. Domestic industrial exchanges and influence – Network security industry • APAC Secretariat carries out exchanges and cooperation with mainstream security service suppliers in China, and is now conducting R&D in anti-phishing sector, including working mode, anti-phishing technology, data source, data scale and extensive friendly communication with other teams on security.

  14. Domestic industrial exchanges and influence – Governmental agencies and organizations • APAC has reached a cooperative agreement with China Banking Regulatory Commission, China Financial Certification Authority, Beijing Municipal Public Security Bureau, Shanghai Information Network Security Administration Association and other governmental agencies and organizations, and conducted cooperation and discussions on phishing website reporting, determination, etc.

  15. Publicity and public welfare activities of APAC • In November 2011, APAC deepened its publicity in communities, publicizing the knowledge about identification and prevention of phishing websites to residents and collecting the experiences of phishing website attacks from netizens to serve as cases. Mr. Qi Lin, Secretary-General of APAC, is in an interview with CCTV • APAC Secretariat releases the situation of phishing website treatment and the new forms and new trend of phishing websites.

  16. Publicity and public welfare activities of APAC • In Jun 2012, APAC deepened its publicity in communities, imparting Internet knowledge, the risks of online shopping and hazard of phishing websites to seniors, and carried out on-site demonstration of computer operation and teach them how to avoid such risks and hazards, striving to publicize Internet knowledge and help seniors get familiar with Internet, operate network and reasonably use Internet.

  17. Work achievement – Monthly Phishing Website Report • APAC releases phishing website treatment briefings on a monthly basis, analyzing the situation of phishing website treatment in each month. • APWG has adopted APAC anti-phishing data as the key data source and analysis source of annual report for three successive years.

  18. Work achievement – Situation of phishing website treatment January – October 2012, APAC dealt with 21,625 phishing websites in total. As of October 2012, APAC has confirmed and dealt with an accumulative total of 97,492 phishing websites.

  19. Work achievement – Phishing website counterfeiting Similar to 2011, the counterfeiting objects of phishing websites in 2012 are still Taobao, banks, TV stations, Tencent and other popular websites, and those websites or pages involving many login, payment and other operations.

  20. Work achievement – Phishing website reporting In 2012, the number of phishing websites reported by APAC members amount to 80.79% of the total, APAC members are very active in combating against network phishing and safeguarding the security of their own networks, and play a significant role in boosting the work of APAC.

  21. Work achievement – Phishing websites in China In 2012, there wasn’t any significant change in industrial distribution of phishing websites, still mainly involving websites or pages that need login and payment such as payment & transaction, financial securities, media and communication, etc.

  22. Work achievement – Phishing websites under each TLD Phishing crimes frequently occur in some new top-level domains represented by .to and .in recently. In allusion to a great number of phishing websites under overseas domain names, APAC is currently pushing URL to partners for screening and treatment.

  23. Work achievement – Analysis of Foreign domain name registrars DOT TK, GODADDY and MONIKER are the top three foreign domain name registrars. APAC with domain name registered abroad has pushed the URLs of phishing websites to third-party partners for screening.

  24. Orientation of APAC’s future work 平台 Activities Platform Diversified forms: annual meeting, technical workshop, forum, consumer training program, etc. Building up a network platform, carrying out publicity and synergizing the strength of each industry Platform Activities Development goal Scientific research Promotion Scientific researches Promotion Expanding cooperation approaches, and exchanging resources, etc; various brand promoting forms; news group, electronic journals, links, etc. Building up scientific research teams, establishing local database, and releasing the research report on a regular basis; enhancing international scientific research and cooperation, and establishing scientific research funds, etc. Means:

  25. Orientation of APAC’s future work • Cooperate with Asia-Pacific countries to establish a shared phishing platform • Actively carry out scientific publicity to publicize professional anti-phishing knowledge • Build up a data transfer platform to improve phishing treatment efficiency • Boost anti-phishing technology research and establish an effective detecting system • Actively conduct data analysis and release industrial report on time • Enhance international communication and cooperation, and enrich phishing treatment measures • Convene meetings of anti-phishing industry, and accelerate the prosperity and development of the industry • Combat against counterfeit websites, and safeguard the rights and interests of netizens 3 • Further improve the efficiency of phishing website detection and treatment speed • Establish multi-party cooperation, and enrich overseas phishing website treatment • Establishment of APAC • Phishing reporting and control 2 1 2010-2012 2008-2009 2013

  26. Annual meeting of 2012 Anti-phishing Alliance of China (APAC) will be held soon. Time: Wednesday, 5 Dec, 2012 Venue: Beijing presidential hotel Warmly welcome your attendance Please contact meeting@apac.cn for registration WWW.APAC.CN CAS Software Park, 4, Nansijie , Zhongguancun, Haidian District, Beijing 100190

  27. Reporting e-mail for individuals: jubao@apac.cn Reporting e-mail for APAC members: fdy@apac.cn Reporting Tel: 010-58813000 Reporting platform: jubao.apac.cn THANK YOU WWW.APAC.CN CAS Software Park, 4, Nansijie , Zhongguancun, Haidian District, Beijing 100190

More Related