Facing the security challenges in the era of intelligent networks

The annual "China Computer Network Security Conference" was recently held in Wuhan. The theme of this year's conference is “Intelligent Networking and Security Escort”, which highlights the importance of smart responses in the face of new threats and attacks.

Huang Chuiming, the organizer of the conference and the director of the National Computer Network Emergency Technology Processing and Coordination Center (CNCERT/CC), pointed out that with the deep integration of the Internet and traditional industries, “Internet+” has increased as a new wave of Internet applications and new economic forms. The economic and social innovation and productivity have formed a new form of economic development based on the Internet. However, as the traditional industry enters the fast lane of the Internet, the issue of cybersecurity will also become more prominent. The theme of this year's conference is “Intelligent Networking and Security Escort”. It is to discuss with delegates about network security issues and solutions that are faced in the era of intelligent networks, with a view to protecting the “Internet Plus” strategy.

According to reports, in addition to the special training on network security with the theme of mobile internet security launched in the 2015 China Cyber ​​Security Technology Competition, the organizers also adopted “Smart Network Security,” “Network Security Environment Governance,” and “Network Security. The four forums of “Life” and “CNCERT-CIE Cyber ​​Security Academic Forum” shared technical research achievements and work experience for participants and provided reference and enlightenment for people in the information security industry.

One of the highlights of the conference was the release of the "2014 China Internet Network Security Report." The report pointed out that as of the end of December 2014, the total number of Chinese websites was 3.647 million, maintaining the scale of development, the number of netizens reached 649 million, the scale of mobile Internet users reached 557 million, the Internet penetration rate reached 47.9%, the speed of Internet upgrades and 4G The full-scale commercial advancement has driven the innovation of the entire industry chain, such as mobile applications and smart terminals, and has promoted the rapid growth of information consumption. At the same time, the rapid development of informatization has also brought with it many associated cyber security threats and other associated problems. There are still many loophole risks in China's basic network, and cloud services are increasingly becoming the key targets of cyber attacks. The domain name system is faced with a severe threat of denial of service attacks. Frequent domain name resolution attacks against frequent websites are tampered with.

Yan Hanbing, deputy director of the Operation Department of the National Computer Network Emergency Technology Processing and Coordination Center, said that it is particularly noteworthy that the threat of cyber attacks has increasingly penetrated into the industrial Internet. At present, it has been found that some addresses in China are infected with malicious program events specifically targeting industrial control systems. In addition, distributed reflective denial-of-service attacks have become increasingly frequent, and a large number of forged attack packets originate from overseas networks. Attacks and exploitation of important information systems, basic applications, and general software and hardware vulnerabilities are active. Vulnerabilities have evolved toward traditional areas and smart terminals. The leakage of website data and personal information is still serious and mobile applications have become the new subject of data leakage. Mobile malware continues to evolve, and environmental governance still faces challenges.

Faced with severe security situations and rapidly changing security threats, it requires the concerted efforts of all sectors of society and the need for relevant agencies to coordinate their efforts and promptly coordinate their disposal. Huang Clarified that the National Computer Network Emergency Response Technical Processing Coordination Center has long been working on the prevention, detection, early warning, and coordination of network security incidents in accordance with the guidelines of “active defense, timely detection, rapid response, and force recovery”. Implemented a seven-year plan to improve national cyber security assurance capabilities, strengthened the governance of public Internet network security environment, supported special actions taken by the Ministry of Industry and Information Technology to prevent and control the underground industrial chain of hackers, and crack down on the treatment of mobile Internet malicious programs, and launched XP stop services. Work, coordinate the handling of "heart bleeding", "broken shell" and other loopholes, and the network camera was implanted with malicious programs, "XX artifacts" mobile phone virus and other sudden network security incidents. The National Internet Emergency Response Center has increased its emergency response system and established cooperative relationships with more than 700 units including basic telecommunications companies, Internet companies, security companies, domain name service agencies, and research institutes in China to raise awareness of public safety.

“We always uphold the concept of openness, cooperation, participation, and sharing and promote the 'CNCERT International Partnership Program'. We have established a network security cooperation relationship with 144 organizations in 63 countries and regions and signed a memorandum of cooperation on cyber security with 20 organizations. In 2014, we and our international partners jointly handled 37 cross-border NTP reflection and amplification attacks, as well as the attacks on the official website of the President of Kazakhstan, the theft of personal information in Korea, and the overseas attacks on recursive DNS servers in China. Events, etc., have made active efforts to create a good international image," Huang clarified.