Cybersecurity Research Center

Director: Hideki Sunahara (Professor, Graduate School of Media Design (KMD))

Main Campuses: Hiyoshi, Shonan Fujisawa

As the internet becomes a social infrastructure, it is necessary to take measures to ensure that activities can be conducted safely and securely. This requires not only technical measures but also the essential development of accompanying organizational management, social systems, and legal systems. This research center conducts research and development to implement such wide-ranging and comprehensive cybersecurity measures. Here, we will specifically address the following themes.

Cybersecurity, crisis analysis, crisis prediction, Identity/Trust, educational training packages

■ Activities continuing from the previous fiscal year: Background, rationale, and goals for continuation

The following themes implemented in the previous fiscal year will be continued in FY2019.

In the previous fiscal year, we focused on achieving concrete results through R&D experiments centered on the established operational environment. We are achieving several results using these, and continuous R&D experiments are essential for this research. Therefore, we will continue these as the center's core R&D items. In particular, items 1 and 2 are based on a joint research agreement with Hitachi, Ltd., and item 3 is a project adopted by NEDO SIP, so they will be continued as important items.

■ New activity goals and content for FY2019, and implementation background

Research topics related to cybersecurity are constantly changing. We will constantly monitor these situations and establish a system to respond quickly to new research themes. Specifically, we will create a mechanism to constantly aggregate reports from each member and start R&D on new research themes. In FY2019, we anticipate an increase in issues related to discussions on social and legal systems to make developed technologies function more effectively, the utilization of personal information centered on individuals, and cybersecurity for the Internet of Things (IoT). We plan to conduct thorough research in these areas. In particular, IoT is an important field, including the medical devices discussed in WG5, and we plan to deepen discussions, including specific applications.

■ Implementation details for the fiscal year's business plan, research results, and degree of achievement

In FY2019, we conducted research activities centered on five WGs to achieve concrete results.

WG1 has been conducting research centered on the R&D of distributed SOC construction and operation technology. We actually set up a distributed SOC within Keio in collaboration with the ITC, and conducted technology development and demonstration experiments for information sharing. These results have been presented at domestic research meetings and submitted to academic journals.

WG2 has been conducting research centered on technology development for Trusted Identity. Based on standards such as the OpenID Foundation and FIDO Alliance, we prepared an IdP experimental environment and developed the on-campus authentication environment. We are also promoting the use of biometric authentication technology, particularly finger vein authentication. These results have been presented at domestic research meetings. We also discussed lifetime identity, including when and how to register in the digital space and how to build trust while inheriting these identities. Here, we are discussing new procedures that consider the level of trust and the simplicity of registration. Furthermore, we are developing secure file exchange technology for such environments. We have also compiled necessary recommendations regarding the social and legal systems surrounding security.

WG3 is developing training material packages for human resource development, and is designing security education course curricula for undergraduate and graduate schools, as well as educational curricula for critical infrastructure companies. These results have been presented at domestic research meetings and submitted to academic journals. Furthermore, we conducted a study on the alignment of career paths in companies.

WG4 proceeded with studies on information sharing regarding security, including core regional organizations. We also analyzed the collected information and advanced discussions on specific collaborations, such as extracting threatening communications.

WG5 held discussions on security in medical settings and developed a system to operate and manage medical devices to ensure their security. Furthermore, to promote international collaboration in this R&D, we held two international symposiums, discussed collaboration with related organizations in Europe, the US, Asia, and Israel, realized the establishment of the INCS-CoE, and were able to build concrete collaborative relationships with participating organizations.

Number of conference presentations: 2 papers under submission to journals, 3 domestic research meetings

Achievements in social contribution, such as events

In FY2019, the five WGs are achieving concrete results.

WG1 coordinated with the ITC to specifically advance the installation of a distributed SOC, and was able to develop and conduct demonstration experiments on the fundamental technology for information sharing with related organizations.

In WG2, the development of a concrete authentication infrastructure is progressing, and collaboration with actual on-campus services is advancing. We have also introduced the concept of "lifetime identity" for more concrete service implementation and are building a model, thereby establishing a foundation for realizing a society where the real world and digital space are integrated.

WG3 has also completed the design and trial of a desirable curriculum based on the security curriculum implemented through on-campus collaboration, as well as a study on its alignment with the career paths of security engineers. This is aimed not only at student education but also at development as an Extension Course for working adults, which will raise the presence of Keio University in this field.

In WG4, the construction and collaboration of an information sharing platform including Chubu Electric Power Co., Inc. is progressing, and its implementation is advancing regarding the state of cybersecurity in the local community.

Also, we have developed the INCS-CoE as an international collaboration platform and have been able to promote concrete collaborative activities with related organizations in the UK, the US, Asia, Israel, and Japan.

We believe that such achievements would be difficult for individual faculties and graduate schools to accomplish alone and are the result of the center's efforts as a university-wide organization.