Formation of JPCERT/CC
Incident control cycle for cyber security

The services provided by JPCERT/CC form a cycle comprising "prevention," "detection," and "response," which are elements of coordination activities aimed at controlling incidents and achieving cyber security.
"Incident response" consists of support services designed to expedite handling of incidents.
It would be even better if incidents could be detected quickly. That is what we are aiming for with our "early warning" services.
"Vulnerability information handling" is a series of services such as identifying and removing system vulnerabilities at an early stage to minimize the occurrence or spread of incidents.
In the event of a serious incident, "artifact analysis" is conducted to study related malware, etc. The analysis results are used to help respond to incidents and incorporated into our knowledge base to help prevent future incidents.
To operate this cycle effectively, we work on "enhancement of countermeasures against cyber threats through coordination with domestic CSIRTs and related organizations". Through these activities, we create an environment that facilitates interaction between companies and JPCERT/CC.
We also engage in activities including overseas support, building relationships, and international coordination as part of "addressing global cyber threats".
While past incidents primarily involved information systems, industrial control systems (ICS) that support the functions of critical infrastructure are also subjected to the threat of cyber attacks. In this area, we provide services in the form of "ICS security countermeasures"
Top