| Summary/Abstract |
This paper looks at Japan’s cybersecurity policies while placing the focus on the defense of critical
infrastructure that is directly related to national security, and examines the measures that need to be
put in place going forward in regard to public-private partnership initiatives. Firstly, it takes a broad
overview of Japan’s policies followed by an overview of the cybersecurity policies of the Republic
of Estonia, and carries out a comparison with Japan based on the following six classifications:
cybersecurity strategy, legal systems, public-private partnership organizations and informationsharing systems, risk analysis and business continuity plans, cyber exercises, and national defense
strategy and organizations. Then, the feasibility of implementation in Japan is considered. Finally, it
makes the following recommendations: (1) Positioning the protection of critical infrastructure as the
most important issue in the cybersecurity strategy; (2) Reviewing the legal system and strengthening
the supervision and guidance of critical information infrastructure (CII) operators; (3) Strengthening
the authority of the National center of Incident readiness and Strategy for Cybersecurity (NISC), and
enhancing its functions; (4) Implementing exercises in preparation for a large-scale cyberattack at the
national level; (5) Building a framework that enables civilians with advanced skills to participate in
national defense in cyberspace.
|