1 / 25

Thaweesak Koanantakool Director, National Electronics and Computer Technology Center

Seminar on  Information Security Technologies Towards e-Government November 19, 2003, Bangkok, Thailand. Thaweesak Koanantakool Director, National Electronics and Computer Technology Center National Science and Technology Development Agency Ministry of Science and Technology

meara
Télécharger la présentation

Thaweesak Koanantakool Director, National Electronics and Computer Technology Center

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Seminar on Information Security TechnologiesTowards e-GovernmentNovember 19, 2003, Bangkok, Thailand Thaweesak Koanantakool Director, National Electronics and Computer Technology Center National Science and Technology Development Agency Ministry of Science and Technology htk@nectec.or.th NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  2. Presentation Outline • Thailand ICT status • ICT Policy and Master Plan • CyberLaws • eGovernment progress • Bridging the Digital Divide Programs • Security issues NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  3. Thailand NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  4. Thailand ICT Indicators Population 62.80 million GDP Growth (2002) 5.2 % GDP (2002) 5,430 Billion Baht Number of Commercial ISPs 18 ISPs Number of non-commercial ISPs 5 ISPs Internet Exchanges 2 exchanges Total International Bandwidth (Oct, 03) 1.44 Gbps Total Domestic Bandwidth (Oct, 03) 8 Gbps PC Users (June, 03) 11.3 million Domains registered under “.th” 13,116 domains Internet Users (June, 03) 6.0 million Fixed line subscribers 12.9 /100 population Mobile phone users 30.6 /100 population NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  5. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  6. ICT Development Policy Framework for 2000-2010 (IT 2010) Information Economy Information Society e-Industry e-Commerce e-Society e-Education Sectors e-Government Science and Technology, R&D, Knowledge Cross-cuttingissues Information Development, IT Literacy, IT HR Telecommunication Infrastructure Quantity Quality

  7. ICT Policy Development Software Industry Promotion Agency Introduction of Internet Software Park Thailand Government Information Network Government CA Service SchoolNetThailand Government CIO Program Activities E-Commerce Resource Center IT Law Development . Electronic Transactions Act NII, CompCrime, DP Acts e-Thailand e-Government Project TIS-620 Thai Character set in UNICODE TIS-620 Thai Character set registered with IANA English-Thai Web Translation Policies eIndustry e-Government e-Society eCommerce e-Education National ICT Masterplan 2002-2006 IT 2000 Policy IT 2010 Policy Ministry of ICT National IT Committee (established 1992) . ^1992 ^1993 ^1994 ^1995 ^1996 ^1997 ^1998 ^1999 ^2000 ^2001 ^2002 ^2003 ^2004 ^2005 ^2006 NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  8. IT Law Development • Electronic Transaction Law (incorporating Digital Signature) since April 2002 • Information Infrastructure Law (a Universal Access Law to ensure accessibility and equitably to all citizens) • Data Privacy Law • Computer Crime Law • Electronic Fund Transfer Law NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  9. Cybercrime Law • Cybercrime is recognized as a significant problem requiring the cooperation among the government and law enforcement agencies. • The new threats challenges existing law. Thailand therefore drafted the Computer Crime Bill, one of ICT law, as guided by the framework of Cybercrime Convention of Council of Europe since a common purpose of those Convention aims principally at harmonozing the national laws. • With respect to the scope of the Bill, it contains three chapters. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  10. Cybercrime Law • Chapter one covers the criminalisation provisions, namely, illegal access; illegal interception; data interference; system interference; and misuse of devices. • Chapter two is to criminalise the computer-related offences, computer related forgery, computer-related fraud and offences-related to child pornography. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  11. Cybercrime Law • Chapter three is intended to set up the criminal procedural law powers in order to enable a fast and effective investigation and prosecution. In the course of a criminal investigation, preservation of stored data, disclosure of traffic data and search as well as seizure of computer data are needed. • The Bill is currently approved in principle by the Cabinet and now under consideration of the Council of the State. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  12. National ICT Master Plan(2002-2006) Approved by the Cabinet on September 25, 2002 NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  13. ICT Master Plan(2002-2006) Vision: Thailand will be the regional center of ICT development and business, particularly in software. Thailand is to have strong and competitive economy as well as knowledge-based society, given that entrepreneurs and majority of people can access the information. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  14. ICT Master Plan(2002-2006) Mission: Enhance continuous collaboration between public and private sectors as a development network of information and infrastructure.Reform ICT management including plans for research, education, and training in ICT. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  15. Strategies in the ICT Master Plan 3. R&D Reform 5. Entrepreneurs Capability Development 4. Society Capability Leverage for future Competition 7. ICT for Public Sector กับการ 1. Developmentof ICT Industry 6. ICT for SMEs 2. Quality of Life and Society Enhancement NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  16. Strategy 7: (ICT Master Plan)ICT Utilization for Public administration and Services Government to set up central organization to oversee ICT development and utilization within the public sector. Emphasis will be on the unity and integration of database system, planning, coordination, budget allocation and transparency in procurement, to meet the reauirement of each agency, as well as reduce investment duplication. This will enable public sector to accumulate, exchange and share information among themselves, based on secured and open standard platform. • Setting up new ministry responsible for the development of ICT nationally. • Structural reform within organization in related to ICT, such as setting up CIO office as well as improving laws and regulations. • Develop governmental database for information exchange • Apply GIS for socio-economic development • Encourage effective use of ICT network among government agencies • Devise mechanisms to build up ICT-related capability for public sectors employees • Develop monitoring and evaluation system for national ICT development • Develop National Digital Nervous System Source: National ICT Master Plan(2002-2006) NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  17. Thailand e-Government Development Beneath the Iceberg Civil Servant Attitudes Political will And support HRD CIO/CEO Program • CIO Training • CIO Forum • CIO Conference NationalOperationCenter - Ministry of ICT - National IT Committee Computer and Network Infrastructure • - e-Commerce Resource Center • - G to C • - G to B • - e-Procurement • - e-Tax • e-Citizen • e-Marketplaces E-Commerce Infrastructure InformationInfrastructure - Government IT Services - Government Information Network - SchoolNet Rules & Regulations Legal Infrastructure Security & Policy - Govt Data Infrastructure - Govt News Exchange - Govt Data Exchange - Government Interoperability Standard PKI ThaiCERT Computer Crime Law Gov CA Service Information in every organization • - Electronic Transactions Act • Data Protection Law • NII Law, EFT Law NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  18. Benchmarkingsurveys Active monitoring ofICT indicators Equal access everywhereRoadshow, Linux SIS SchoolNetThailand 20 pilot centers in 2002best practice models Communitytelecenters Digital Library ToolkitDigital Archive, Learning objects Development oflocal contents Development ofIT Laws National Information Infrastructure Bill human capacity building Teachers training, Government CIO program Wireless local-loop researchNationwide IP Network (TOT) Accessibility andlowering costs DOT Force UN ICT Task Force eASEAN (e-Society) ITU, APT, etc. Public – PrivatePartnerships WSIS2003 IT2000Policy Challenges: TelecommunicationinfrastructureAffordabilityLocal contentsHuman ResourceLegal frameworks Bridging the Digital Divide:Programs in Thailand NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  19. Four main tracks ofThailand e-Government services Standard online information services to public, business sectors, and government sectors Track 1. Information Services Online services: car registration renewal, taxation, business registration,... Track 2. Transaction Services Financial management gateway for government and business sectors Track 3. Payment Gateway Track 4. E-Procurement Electronic Procurement for government sectors NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  20. Recent Development (2002-2003) • Government PKI Service Launched • E-Auction Trials (all government agencies) • National Operation Center Project • PMOC: Prime Minister’s Operation Center • MOC: Ministerial Operation Center • DOC: Departmental Operation Center • POC: Provincial Operation Center • Government Information Technology Service (GITS) • Annual Government IT Awards • Government Data Exchange (GDX) • eCitizen Portal (www.ecitizen.go.th) NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  21. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  22. Technology handling of Threat Physical Security (การรักษาความมั่นคงทางกายภาพ) General Staff Practices (การปฏิบัติงานของเจ้าหน้าที่) Contingency Planning/ Disaster Recovery (แผนสำรองฉุกเฉิน/ การกู้ภัย) Security Architecture and Design (การออกแบบและโครงสร้างของการรักษาความมั่นคง Incident Management (การรับมือกับเหตุการณ์) Encryption (การเข้ารหัส) Monitoring and Auditing (การเฝ้าดูและตรวจสอบ) Authentication and Authorization (การพิสูจน์ตัวตนและการให้สิทธิ์) System and Network Management (การจัดการระบบและเครือข่าย) (แหล่งข้อมูล:http://www.cert.org) NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  23. Management handling of threat Security Practice Areas (การดำเนินการด้านการรักษาความมั่นคง) Institutional Knowledge (ความรู้ที่ใช้แนะนำ) Collaborative Security Management (การจัดการด้านการรักษาความมั่นคงร่วมกัน) Security Management (การจัดการด้านการรักษาความมั่นคง) Security Strategy (กลยุทธ์ในการรักษาความมั่นคง) Security Policies andRegulations (ระเบียบและนโยบายด้านการรักษาความมั่นคง) (แหล่งข้อมูล:http://www.cert.org) NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  24. Priority areas for WSIS Wireless Local Loop Domestic Internet Exchange Regional Training Center Low Cost PC Program Rural Empowerment Open Source solutions Machine Translation Digital Archive E-Learning UNCITRAL Model Laws World PKI Forum WIPO • Basic Telecommunications • Basic Access to the Internet • Human Capacity Building • Affordable Access Devices (PCs, PDA) • National ICT Policy and Plan • Threat of Liberalization • Appropriate Software (Legal, compact, low cost) • Local Language enabled on Computers • Creation of Local Contents • Portal Sites • e-Government -- Government Facilitation • Standardsinmanufacturing, safety, health • IT-Laws (e-Transaction, e-Signature, Computer Crime, Data Protection) • Security -- Information/System/Network • Authentication and Certification, PKI • Broadband Access (Corporate, home) • IT-Manpower development • Regional Networking Collaboration • Opportunities from Liberalization and Regionalization • e-Marketplaces • e-Payment infrastructure • Consumer Protection • Cross Border Certification • Intellectual Property rights Protection • Privacy Concerns of developing countries and LDC Concerns of developed countries And industrial leaders NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

  25. Sawasdee Thank you for your attention. NECTEC+CICC Seminar on Information Security Technologies: Towards e-GovernmentNovember 19, 2003, Bangkok, Thailand.Thaweesak Koanantakool

More Related