Guidelines for the Prevention of Internal Improprieties
in Japanese Organization

Shigeyoshi SHIMA^1* and Ayako KOMATSU²

¹NEC Corporation
1753, Shimonumabe, Nakahara-ku, Kawasaki, Kanagawa 211-8666, Japan
shima@ap.jp.nec.com

²Information-Technology Promotion Agency, Japan
2-28-8 Honkomagome, Bunkyo-ku, Tokyo 113-6591, Japan
a-koma@ipa.go.jp

Abstract
Information security incidents involving internal improprieties that threaten the very business of Japanese organizations have drawn attention. Internal improprieties are one of problems to be solved in Japanese organizations. However, it is difficult to share information about internal impropriety incidents and to consider the causes of and effective countermeasures for internal improprieties among Japanese organizations. Each organization enacts countermeasures based on its own experience, and most these countermeasures of Japanese organizations are insufficient. Thus, Information-technology Promotion Agency, Japan (IPA) created "Guidelines for the Prevention of Internal Improprieties in Organizations" which provides exhaustive countermeasure.  This paper describes summary of these guidelines, and explains problems which are how to collect information and workplace environment to be hard to commit internal improprieties, and solutions of the problems.
 

Keywords: Insider threat, Internal Impropriety, Information security countermeasure

*: Corresponding author: Shigeyoshi SHIMA
NEC Corporation Central Research Laboratories / Cloud System Research, Tel: +81-(0)44-431-7686

Journal of Internet Services and Information Security (JISIS), 3(3/4): 81-93, November  2013 [pdf]