Profile

1. Background

Information technology (information, communication and technology / ICT) is a tool to increase the variety of human activities. In its development, ICT has now become the main needs of society, especially those who live in big cities. The implication of a phenomenon is certainly not always beneficial to users, but also can cause negative impacts. Similarly with ICT.

One of the negative impacts is cybercrime that has been increasing since 2003. For example, carding (credit card fraud), ATM / EDC skimming (early 2010), hacking, cracking, phishing (Internet banking fraud), malware (viruses / worms / trojans / bots), cyber squatting, pornography, gambling online, transnational crime (drug trafficking, mafia, terrorism, money laundering, human trafficking, underground economy). All these effects must be addressed.

At least since 2003, the Indonesian National Police (POLRI) noted there have been 71 cases of cybercrime. In 2002, Indonesia was ranked second after Ukraine in cybercrime, especially online fraud. Several serious cases have even threatened our national security and citizen life. Among others are site defacing of KPU (General Elections Commission) www.kpu.go.id (National Election of 2004), DNS poisoning of President’s official web site (www.presidensby.info) and the cyber war between Indonesia vs Malaysia which every day has continued and has increased between the two countries (the song a sense of Sayange, claim of batik, Ambalat conflict, etc.)

The development of communication and information technology in Indonesia must be balanced with the readiness of the strategic infrastructure in order to minimize negative impacts. Starting from regulatory sector (policy / regulation), the readiness of the institution and human resources, especially in the field of security. Therefore, information technology can be utilized to support an efficient and safe citizens productivity improvement in all sectors in thus a better quality of life can be achieved.

On May 4 2007, our government issued the Ministerial Regulation No. 26/PER/M.KOMINFO/5/2007 concerning Telecommunications Network Application Security based on Internet Protocol. Minister of Communications and Information Technology had appointed Indonesia Security Incident Response Team on Internet and Infrastructure (ID-SIRTII) to conduct security surveillance of telecommunication network based on internet protocol.

Fundamental duties of ID-SIRTII are to socialize with relevant parties on the subkect of the IT security (information system security), early monitoring, early detection, early warning of threats to the telecommunications network from inside and outside the country especially to secure the network application, to create, to run, and to develop the database log files and statistics of Indonesia’s Internet security.

ID-SIRTII provides assistance to improve the safety and security system for institutions / strategic institutions (critical infrastructures) in Indonesia and became the Coordination Center / CC for each of the initiative not only in domestic but also in overseas as well as to be a single point of contact. ID-SIRTII also conducts research and development in information technology / information systems security. Currently, the laboratory facilities which have been held, among others: training center, lab of security simulation, digital forensic lab, malware analysis lab, data mining lab and content filtering project activity, anti spam etc.

The vulnerability of information systems could lead to threats, harassment and assault. It is not possible that these activities could cause economic losses to the cessation of user services. For example, loss of internet resources in Indonesia due to the accumulation of spam attack submitted by irresponsible parties.

ID-SIRTII also has a supporting role in law enforcement, especially against the cybercrime. In particularly for presenting digital evidence, ID-SIRTII has the facilities, expertise and procedures to perform analysis in order to make the material evidence become valuable in law. In an investigation, ID-SIRTII has a central role in providing information about the statistics and patterns of attack (incident) from Indonesian Internet traffic.

2. Founders and Stake Holders

The idea to establish ID-SIRTII (Indonesia Security Incident Response Team on Internet Infrastructure) had started to be submitted by some quarters, especially practitioners, industries, academics, and government information technology communities since 2005. The initiators (founders and stake holders) include:

  • AWARI (Asosiasi Warung Internet Indonesia/Indonesian Internet Kiosk Association).
    www.awari.or.id
  • MASTEL (Masyarakat Telematika Indonesia/Indonesian Infocom Society).
    www.mastel.or.id
  • APJII (Asosiasi Penyelenggara Jasa Internet Indonesia/Indonesian Internet Service Provider Association).
    www.apjii.or.id
  • Police (Kepolisian Republik Indonesia/Indonesian National Police).
    www.polri.go.id
  • KEJAGUNG (Kejaksaan Agung Republik Indonesia/Indonesian Attorney General)
    www.kejaksaan.go.id
  • DIRJENPOSTEL (Directorate General of Post and Telecommunications).
    www.postel.go.id
  • BI (Bank Indonesia) and Indonesian Credit Card Association.
    www.bi.go.id

3. Team Members

  • Mr. Richardus Eko Indrajit as Chairman
  • Mr. Muhammad Salahuddien as Vice Chairman
  • Mr. Mizamil as Deputy of Interagency Collaboration
  • Mr. Rapin Mudiardjo as Deputy of Socialization and Public Services
  • Mr. IGN Mantra as Deputy of Operational and Network Security
  • Mr. Bisyron Wahyudi as Deputy of Data Center, Application and Database
  • Mr. Budi Indiarto as Deputy of Research and Development

4. The Legal Basis of ID-SIRTII

ID-SIRTII as a legal institution which has been granted the right and authority to conduct Internet traffic monitoring in Indonesia refers to the rule of law as follows below:

  • Act No.36/1999 regarding National Telecommunication Industry
  • Government Regulation No.52/2000 regarding Telecommunication Practices
  • Ministry of Communication and Information Technology Regulation No.27/PER/M.KOMINFO/9/2006 regarding Telecommunication Network Management Security based on internet protocol
  • Ministerial Regulation No.26/PER/M.KOMINFO/2007 regarding Indonesian Security Incident Response Team on Internet Infrastructure