103  Seoul-Melbourne Multilateral Memorandum of Understanding on Cooperation in Counting SPAM E-mail becomes a major application with the population of computer and network, however, the following spam abuse is getting more and more rampant. Spam not only wastes individual and enterprise cost, but also endangers information and network security. Enterprises and the government have to face and restrain the spam threat which is a global authorized problem. In addition to legislation and management, the most important is to set up a transnational and trans-organizational cooperation to effectively stop spam persecution. Seoul-Melbourne Multilateral Memorandum of Understanding on Cooperation in Counting SPAM is an agreement signed by Australian Communications and Media Authority ACMA and Korea Information Security Agency KISA in 2003. Participates in Seoul-Melbourne MoU are part of a network of computer security incident response and security teams that work together voluntarily to deal with spam problem and prevention. TWCERTCC has been promoting the training of computer-network security response for years. Since 2005, TWCERTCC has officially joined Seoul-Melbourne MoU member, and played the contact agent for sharing the experiences on dealing Taiwan’s spam issues and exchange the anti-spam jurisdiction process with other members. The key points of our missions are: • To cope Taiwan’s network security incidents with other nations, and take the part as a coordination center; • To assist in handling the transnational spam problems; • To exchange the related security intelligence with each member; • To participate in international forums and meetings related to network security, and to uplift Taiwan’s international image and position.

6. Future work and Conclusion

I order to keep the international influence, to participate in transnational operation and to ensure the basic right of the Internet users, TWCERTCC wishes to enhance the international competitive ability and visibility of Taiwan 104 and practice in international communication by promoting security sense and transaction.  Work for security related research and development to advance the international visibility.  Participate in international interchange and coordination to form a transnational joint defense mechanism.  Jointly developing measures to world-scale network security incidents and know well the international security tendency and development to advance global internet environment.  Train the awareness and capability in information security and risk management through information sharing and international cooperation. 105 14. TWNCERT Activity Report Taiwan National Computer Emergency Response Team - Chinese Taipei

1. About TWNCERT

TWNCERT domestically as known as ICST Information Communication Security Technology Center is the leading CSIRT in Taiwan public sector. TWNCERT is intended for improving incident response and information security awareness in Taiwan. It is mainly dedicated to create a response center that can help optimize the capability of real-time monitoring, coordination, response and handing in the face of security incidents. The missions of TWNCERT include: • To coordinate among relevant agencies and organizations to identify pertinent response and actions in case of security incident. • Providing an information exchange center for information at home and abroad. • To help relevant government agencies to set up computer emergency response team CERT. • To provide government agencies reference information for formulation of security policies. TWNCERT services including: • Alert and publication: Guarding against and publishing probable security threats e.g. vulnerability analysis. • Technical service: Providing technical service to government agencies. • Assistance in the setup of CERT: Assisting interested agencies to set up their own CERT. • Consultation: Making suggestions regarding operation and RD of computer security and Internet issues. • Strategy recommendation: Making suggestion to government agencies regarding strategic planning. • Risk analysis: Undertaking risk assessment. • Collaboration: Building collaborative relationship with legal community, information security business and ISP. 106 1,180 1,076 Comp. Info. Security IR Info. Security Consulting Service • Coordination: Building coordination and communication channels with domestic and foreign incident response organizations.

2. Operations Activities