CyberSecurity, MCMC capable of thwarting threats


CYBERSECURITY Malaysia and the Malaysian Communications and Multimedia Commission (MCMC) have the capacity to evaluate information communication technology systems and products to safeguard national security and sovereignty from threats of espionage, the Dewan Rakyat was told yesterday.

Communications and Multimedia Minister Gobind Singh Deo (picture) said the evaluations are based on international standards, ranging from ISO/IEC 15408 Common Criteria (CC) to Evaluation Assessment Level 4 certification.

“At this stage, the source code is assessed by the laboratory to ensure compliance with the developed protection profile,” he said during oral question time in the House.

He was replying to a question from Hassan Abdul Karim (Pakatan Harapan-Pasir Gudang) who wanted the minister to state what assurance there is that Malaysia’s sovereignty is secured from the threat of espionage when the country chooses to remain committed to using the technology of China’s Huawei Technologies Co Ltd.

Gobind said Huawei products such as Internet protocol cameras, firewalls, network switches, routers and software have been evaluated and certified by international standards including ISO/IEC 15408 CC.

He said CyberSecurity can also handle vulnerability assessment and penetration tests on 5G devices and drones to ensure cybersecurity.

According to Gobind, the government has also developed the National Cryptography Policy for information security through the implementation of credible cryptographic infrastructure.

“This can overcome the problem of information leakage in cyberspace and the authenticity of information,” he said.

Gobind said CyberSecurity is developing a credible cryptographic algorithm portfolio.

Hassan had also asked about security in terms of the 12 free surveillance drones worth RM80 million that Malaysia received from the US.

Gobind said the Defence Ministry, through the Malaysian Armed Forces, has set up two committees — namely the Cyber Committee and the Crypto Committee — to inspect and curb the leakage of information or data gathered through the national defence assets purchased or received from another country.

He also said the Defence Ministry always reviews every piece of aid to be received from the US via a memorandum of understanding or technical agreement which does not bind or undermine national security and official secrets. — Bernama