Cairo – 8/6/2010
Under the auspices of HE Dr Tarek Kamel, the Minister of Communications and Information Technology, the proceedings of the OIC-CERT (The Organization of the Islamic Conference-Computer Emergency Response Team) Regional Workshop commenced with the participation of nine countries. The Workshop is being held at Intercontinental Semiramis, on 8 and 9 June 2010.
The Workshop is attended by Dr Amr Badawi, the Executive President of the National Telecom Regulatory Authority (NTRA), Dr Sherif Hashem, the Senior Advisor to the Minister of Communications and Information Technology for CyberSecurity, and Mr. Mohd Azumi, the head of the OIC-CERT. Eng. Waleed Zakareya, the Head of Egyptian Computer Emergency Response Team, mentioned the issues related to electronic piracy, and how security gaps were exploited. The support needed to bridge and correct these gaps was not available, he stated. Eng. Zakareya pointed out to the means of securing telecom networks in order to protect them from hacking threats.
Then Eng. Suliman Al-Samhan, Information Security Specialist (SA-CERT, Communications and Information Technology Commission, Saudi Arabia) mentioned the issues related to the collection of the information and data of the MMU of Windows Operating System. Eng. Al-Samhan pointed out to the tools used in collecting, analyzing and examining the said data from a legal and penal point of view.
Then Eng. Haythem El-Mir (the Tunisian CERT Specialist) mentioned the new anti-virus software, worm detection tools in addition to piracy methods that could be used by hackers remotely, and the attacks that might target social networks and websites. Eng. Al-Murr highlighted the severity of their threats against e-commerce sites.
Eng. Megat Muazzam (the Malaysian CERT Specialist) pointed out to the definitions related to the usage of virtual honeypot networks, their benefits and difference from real networks. Eng. Megan underscored the significance of honeypot networks and stated that they were considered a trap in which hackers have been entrapped on trying to hack computers.
Then the attendants discussed the most significant global and international expertise in the field of CERT establishment and operation. They highlighted the countries' various experiences in this concern and how the cooperation between member states of OIC-CERT in encountering and defying hacking and electronic piracy could be activated. Moreover, the Workshop attendants underscored the necessity of activating the cooperation between countries in developing means of detecting threats.
The second day of the Workshop proceedings will deal with a practical training of the members of OIC-CERT. The training encompasses analytical methods of data and information registers of computers, in addition to the best ways for storage of these registers. Moreover, the training encompasses data mining related to instantaneous control registers of telecom networks and the penal legislations of computers. Furthermore, training includes CyberSecurity and methods of securing websites, and a discussion of security gaps thereof, how they could be exploited and secured, the hackers' means of attacking computers and websites in addition to the role of Computer Emergency Response Teams in encountering their attacks.
CyberSecurity experts and members of Computer Emergency Response Teams from A.R.E., KSA, Jordan, Syria, Oman, Tunisia, Iraq, Malysia and Turkey participated in this Workshop.