Dr. Pattanasak Mongkolwat is the Dean of Faculty of ICT, Mahidol University, Thailand.

As cybersecurity risks for IoT devices are increasing, it is necessary to take effective measures dedicated to IoT devices to protect the whole network and the users of IoT devices. In Japan, the Ministry of Internal Affairs and Communications, relevant organizations and ISPs have been making new efforts to make IoT devices secure. This report will share what we have observed and conducted to ensure cybersecurity in IoT era in Japan.

Hiro Takaoka is a deputy director in the office of the Director-General for Cybersecurity, the Ministry of Internal Affairs and Communications (MIC) in Japan. His current role at MIC also includes trust services in addition to cybersecurity. Prior to MIC, he was engaged in extensive strategy planning for a pharmaceutical company, carmakers, an AI venture and etc. at a strategy consulting firm. He was also a Deputy Director at the Minstry of Economy, Trade and Industry, dealing with trade and IT/electronics industry issues for over ten years.

IoT/cyber physical society has various security challenges with respect to instrumentation, communication, storage, processing, analysis, control, ID management, key management, and so on. The keynote will discuss novel researches toward one-step-ahead security technologies for the challenges. Those include IoT Security, Malware Analysis, Network Monitoring, Instrumentation Security, Automotive Security, Biometrics/Artifact metrics, Hardware Security, Software Security, Cryptography with Advanced Functionality, Post Quantum Cryptography, etc.

Tsutomu Matsumoto is a professor of Faculty of Environment and Information Sciences, Yokohama National University and directing the Research Unit for Information and Physical Security at the Institute of Advanced Sciences. He is also the Director of Cyber Physical Security Research Center (CPSEC) at National Institute of Advanced Industrial Science and Technology (AIST). He received Doctor of Engineering from the University of Tokyo in 1986. Starting from Cryptography in the early 80’s, he has opened up the field of security measuring for logical and physical security mechanisms. Currently he is interested in research and education of Embedded Security Systems such as IoT Devices, Cryptographic Hardware, In-vehicle Networks, Instrumentation and Control Security, Tamper Resistance, Biometrics, Artifact-metrics, and Countermeasure against Cyber-Physical Attacks. He is serving as the chair of the Japanese National Body for ISO/TC68 (Financial Services) and the Cryptography Research and Evaluation Committees (CRYPTREC) and as an associate member of the Science Council of Japan (SCJ). He was a director of the International Association for Cryptologic Research (IACR) and the chair of the IEICE Technical Committees on Information Security, Biometrics, and Hardware Security. He received the IEICE Achievement Award, the DoCoMo Mobile Science Award, the Culture of Information Security Award, the MEXT Prize for Science and Technology, and the Fuji Sankei Business Eye Award.

This section describes Toshiba Group's cyber security strategy and governance aiming to become a CPS (Cyber-Physical Systems) technology company, including the execution of regulations and compliance with the regulations of each country. In addition, CYTHEMIS and CyberX will be introduced as security solutions targeting Industrial IoT and critical infrastructure.

He Joined Toshiba in 1991. Currently leading research & development for AI and Security technology for Industrial IoT, after leading development for hardware, software and cloud service for consumer products such as Mobile, PC, Tablet and TV. his extensive ICT background and experiences positions him well in leading Toshiba’s industrial IoT security strategy and execution, as well as serving as a consultant to smart manufacturing facility security.

According to the increasing adoption rate of the IoT devices, there are several challenges and concerns about cybersecurity and privacy issues. Although some of the recommendations and guidelines for securing the IoT devices are publicly available but there is still a required amount of work to achieve.
This presentation will cover the current situation of the IoT threats and trends, the recommendation for end-users, and also discuss the collaboration of improving IoT security hygine in Thailand.

Dr. Chaichana Mitrpant is currently Deputy Executive Director of the Electronic Transactions Development Agency, Ministry of Digital Economy and Society, a primary government agency responsible for developing, promoting and supporting electronic transactions in Thailand. He is well-known among public sector management professionals as an expert in IT security. Dr. Chaichana Mitrpant has devoted over 15 years to raising Thailand’s cybersecurity readiness and defensive strength. His past experience includes developing computer emergency response and digital forensic capability, providing IT security consultancy services to law enforcement and legal organizations, developing security training programs for security professionals at all levels, and supporting the National Cybersecurity Committee in drafting the National Cybersecurity Framework.
During his tenure at ETDA, he has represented Thailand at various international fora and helped negotiate successful collaborations and bilateral meetings at ASEAN, APT, ITU, and the UN. Additionally, he has provided his expert opinions and recommendations to other organizations on numerous occasions.
Dr. Chaichana Mitrpant received a PhD (Engineering) from the Universitaet Duisburg-Essen, Germany, an MS (Electrical Engineering) from the University of Michigan, US and a BS (Electrical Engineering) from Rice University, US.

To present security trend in Thailand and security solutions by Hitachi Asia including JP1 for IoT.
Recently, security issue is getting more critical in Thailand. In this session, Hitachi Asia is goint to present about the security trends and topics in Thailand.
Followed by reccommended solution, JP1 for IoT Device Management for remote management and security maesurement on IoT devices.
And also we will introduce other useful solutions.

Mr.Somsak Garnjanakarn currently is Chief Marketing and General Manager of Hitachi Asia (Thailand) Co.,Ltd. He is in charge of Thailand's key account customers and Governement sector for Social Innovation Business including ICT, IOT and so on. His responsibility also cover new local business development. He got Executive MBA from Chulalongkorn University and Enginerring bachelor degree from King Mongkut's Institute of Technology Ladkrabang. He worked aboard for more than 17 years in field of technologies and 13 years in management level in Hitachi group companies.

Nowaday, embedded systems are widely used and connected to networks, especially the Internet. This become the Internet of Things (IoT) era. When a device is on the Internet, it may be attacked or intentionally used by an unauthorized persons. How can we make IoT devices secure under the limited resources?
This presentation will explain the lesson learned from banking and card payment industry how the embedded systems process financial transaction reliably and securely.

Narudom Roongsiriwong is a Certified Information Security Professional with experience more than 20 years. His primary areas of information security are in solution designing, data analytic and application security.
In October 2017, Narudom was awarded "Best Application Security" and "CISO of the Year" from NetworkWorld Asia.
Narudom is a committee member of Thailand Banking Sector CERT (TB-CERT), APAC Research Advisory Council Member of Cloud Security Alliance (CSA), Vice President of Open Web Application Security Project (OWASP) Thailand Chapter. He is also official technical subcommittee of Thailand’s National Digital Identity project.

Digital transformation is one of the most important issues that everyone has to tackle. The big wave spreads not only to companies, but also to governments, municipalities, and society as a whole. Governments are also looking to strengthen their competitiveness through digital transformation. Examples include "Society 5.0" in Japan and "Thailand 4.0" in Thailand. The world of Society 5.0 or Thailand 4.0 is based on the premise that everything is connected, that is, IoT/CPS. Traditionally, systems should have been closed within companies or industries, but the boundaries will become increasingly blurred in the future. The security there also changes from individual optimization to overall optimization.
In this Session, Mr. Shido will introduce the status of digital transformation in Japan including Society 5.0 and its impact on IoT security.

Mr. Masahiro Shido is the editor-in-chief of DIGITAL X, which is the leading web media for digital transformation published by Impress. Shido launched “DIGITAL X” in October 2017.
Prior to joining Impress, he began reporting as a staff writer at Nikkei McGraw-Hill (now Nikkei BP). He has served as deputy editor-in-chief of “Nikkei Computer”, editor-in-chief of a specialized site "Enterprise Platform", etc. From that time, the theme of the interview has been on the value of technology, its impact on businesses and society, and how to use it.
Shido holds a Bachelor of Science degree from Keio University. Born in Kobe.

The world of Cyber security threats have become more and more diversified and have increased every year in ASEAN countries.
Considering this situation, In this session Amiya introduces the recent security incidents and solutions that can be used as countermeasures. introducing solutions for security measures against internal threats that threaten the enterprise and security measures for IoT from the viewpoint of log management as a provider of Security solutions that intelligently identify and mitigate risk for businesses.

Asako Yonezawa is the team leader and public relations manager of Global Sales Unit for AMIYA Corporation, and Planned out strategies to tackle the business competition in the international security markets of Asia-Pacific, North America and EU market. After she finished her master program, she worked for Kyoto University of Art and Design as a standing researcher. Then she joined Trend Micro, Management Planning section in 2000 for 5 years, and entered French Embassy Mission economic division afterwards. She joined Amiya in 2012, and since then she has brought in new client base from the international security markets with the help of the right promotion and organizing cyber security events. Currently she is working on a project collaborating with Mahidol University

During the last ten years, targets of Cyberattack have been changing from PCs to IoT devices. Consequently, infected IoT deceives are massively and continuously increasing even now. In this talk, we present an actual situation of the infected IoT deceives observed through a large-scale darknet (unused IP addresses) monitoring and analysis system called NICTER. We also introduce a new countermeasure in Japan called NOTICE, which is a notification activity for users operating IoT devices with weak ID and password.

Daisuke Inoue received his B.E. and M.E. degrees in electrical and computer engineering and Ph.D. degree in engineering from Yokohama National University in 1998, 2000 and 2003, respectively. He joined Communications Research Laboratory (CRL), Japan, in 2003. CRL was relaunched as National Institute of Information and Communications Technology (NICT) in 2004, where he is currently the director of Cybersecurity Laboratory. His research interests include network security, malware analysis and security visualization. He received several awards including the commendation for science and technology by the minister of MEXT, Japan, in 2009, the Good Design Award 2013, the Asia-Pacific Information Security Leadership Achievements 2014, the award for contribution to Industry-Academia-Government Collaboration by the minister of MIC, Japan, in 2016, and the distinguished paper award at the Network and Distributed System Security Symposium (NDSS), in 2019.

The methods of attack are evolving on a daily basis, and are becoming more clever. In this age of IoT where a great variety of sensors and devices are connected to the Internet, we cannot ascertain what the next cyber-attack might target. This is why strengthening security is crucial. As the spread of connected devices and cloud computing continues, it is possible that the number of victims and the amount of damages will increase accordingly. Real-world cases have shown disruption. It is crucial to build a method and system to identify, detect, protect and respond that an attack has taken place as soon as possible.

Kamolpat Summote, CISSP, CISM, Security+, ITIL, is the Security Consultant Team Lead at Fujitsu Thailand. Has worked in the cybersecurity area as system engineer, security analyst and conultant more than 15 years. Specializes in large-scale enterprise security issues, from policy and procedure, through staffing and training, to scalable prevention, detection, and response technology and techniques.

Overview and demonstrate the vulnerabilities that commonly found in IoT Devices and their Infrasturtuers to help manufacturers, developers, and consumers better understand the security issues associated with the Internet of Things, and to enable users in any context to make better security decisions when building, deploying, or assessing IoT technologies.

Ammarit has over 15 years of hands-on experience in information systems security and penetration testing. He is OWASP Thailand Chapter Vice President. He is proficient in the areas of penetration test, security assessment, information security management, and IT security solution and implementation. Performed penetration test on Electronic Data Capture (EDC) machine, Automated Teller Machine (ATM), and KIOSK for large bank and telecommunication. Conducted the training for technical staff on Secured Software Development Life Cycle course (SSDLC) for large telecommunication and E-Commerce company.

The number of Internet of Things products and their value in the global market are growing up every year. By combining with various sensors, real-time data sensing, AI, and machine learning, IoT business continuously expands to many sectors, such as manufacturers, government agencies, and financial institutes, in order to provide useful services. However, without enough security awareness from both IoT manufacturers and users, IoT devices can bring a new security risk to the organization as well. In this talk, we will talk about the IoT vulnerabilities and risks, and see the research trends that effort to alleviate these issues.

Sudsanguan is an Associate Professor at Faculty of ICT, Mahidol University, Thailand. She graduated Ph.D. in Computer Science and Engineering from Pennsylvania State University, USA. She was the former deputy dean for academic and graduate studies at Faculty of ICT. Her research areas of Interest include Network security, Cloud Security, IoT security and applications. She is also a member of Cloud Security Alliance Asia Pacific (CSA APAC) Research Advisory Council since Oct 2018.

Dr. Nuttapong Attrapadung (Nuts) is a senior researcher at the National Institute of Advanced Industrial Science and Technology (AIST), Japan. He obtained the Bachelor degree in Engineering from Chulalongkorn University in 2001, and the Master and Ph.D. degrees in Information Science and Technology from the University of Tokyo in 2004 and 2007, respectively. His research area is advanced cryptography. He now leads the Cryptography platform research team in the Cyber-physical Security Research Center at AIST.