Since Stuxnet was discovered in 2010, IPA has been working on the launch of certification systems for industrial control systems (ICS) ,and support for critical ICS systems in order to improve security measures for critical ICS in Japan. Currently, we are continuing to work on the ICS security field, focusing on the following activities.
Publication of risk assessment guide for ICS
Support of risk assessment for domestic critical ICS systems
Holding of risk assessment seminar for ICS(Japanese Only)
Other Activities(Conducting trend and technical surveys regarding ICS security, Support of dissemination of security framework, Translation of useful overseas guideline, etc.)
Security Risk Assessment Guide for ICS (Industrial Control Systems)
In order to make risk assessment methods widely known to ICS owners in Japan, IPA has compiled our experience and know-how into the "Security Risk Assessment Guide for Industrial Control Systems". IPA has been conducting risk assessments for ICS and holding seminars using the guide.
Ministry of Economy, Trade and Industry (METI) published CPSF Ver. 1.0 in 2020 to make points of how to manage cyber physical security widely known to the domestic critical infrastructure industries. The framework refers to NIST CSF (Cyber Security Framework) and is targeting the realization of “Society 5.0”.