FSB state system entrusted to make the fight against cyber-attacks
January 21, 2013 was posted Decree number 31c President Vladimir Putin, in which he instructed the FSB to make municipal system of detection, prevention and response to cyber attacks on information resources of the country. The Decree entered into force on a day of its signing — January 15, 2013.
Question on information systems and information and telecommunications networks which are both on the ground of, and in the diplomatic missions and consular offices of the Russian Federation abroad.
The main task set for the state system are defined, including the establishment of the circumstances of the incidents related to the functioning of Information Resource of, forecasting the situation in the field of information security, ensuring interaction hosts information resources, telecom operators in solving problems related to the detection, prevention and elimination of the consequences of cyber attacks.
The newest system will act as the «embodiment of the control of the vulnerability of the RF critical information infrastructure against cyber attacks» and establish the circumstances of computer incidents.
According to the text of the Decree, the FSB:
a) organize and work to create a system of state, betrothed in real Fri 1 Decree makes enforcement of these works, also provides in collaboration with municipalities functioning of its parts;
b) developing methods of detection of computer attacks on information systems and information and telecommunications network of municipalities and in agreement with the owner — to other information systems, and information and telecommunications networks;
c) defines the procedure for the exchange of information between the federal bodies of executive power of computer incidents related to the operation of information resources Russian Federation;
g) organize and conduct in accordance with the laws of Russian Federation activities on assessing the critical information infrastructure protection Russian Federation against cyber attacks;
d) Develop methodological advice on the organization of critical information infrastructure protection Russian Federation against cyber attacks;
e) defines the procedure for the exchange of information between the federal executive authorities and the competent authorities of foreign countries (international organizations) about computer incidents related to the operation of information resources, and organizes the exchange of such information.
Judging by the text of the Decree, it is about the development of Russian CERT (Computer Emergency Response Team).
According to our data, the lack of time to the nearest Russian hurt CERT cybersecurity make integrated system within the Commonwealth of independent states, as negotiations since 2010. In September 2012 at a summit in Yalta heads of CIS member states again supported the creation of the Center for Cybersecurity CIS, which should be modeled on the example of CERT to counter cyber threats on the ground states of the Commonwealth.