Experts at a private Taiwanese security company decided to pull out of a security conference in Las Vegas after coming under what was described as pressure from Chinese and Taiwanese agencies.
Wayne Huang, chief technology officer and founder of Taiwanese security vendor Armorize Technologies, and Jack Yu, a researcher at the company, were scheduled to give a talk on Chinese cyber warfare capabilities at the Black Hat USA 2010 security conference, which will be held in Las Vegas on Wednesday and Thursday next week.
They said they decided to pull out last week after coming under pressure from several Chinese and Taiwanese agencies.
“The Chinese Cyber Army: An Archaeological Study from 2001 to 2010,” derived from information gathered from intelligence groups across Asia, had been advertised as an in-depth analysis of government-backed Chinese cyber espionage.
“Using facts, we will reconstruct the face of the Cyber Army, including who they are, where they are, who they target, what they want, what they do, their funding, objectives, organization, processes, active hours, tools and techniques,” the Black Hat Web site quoted the presenters as saying.
On Wednesday last week, Armorize chief executive officer Caleb Sima wrote on Twitter that the talk had been pulled because the “Taiwanese [government] is prohibiting it due to sensitive materials.”
Black Hat conference organizers yesterday confirmed to the Taipei Times that the talk had been cancelled, but refused to discuss the reasons why. IDG News, an IT news service, broke the story last week.
During a telephone interview with the Taipei Times yesterday, Huang said the decision to drop out of the conference came after he sought to vet his talk with the intelligence agencies on whose information the report was based.
“It was our choice to pull out. We felt that Black Hat wasn’t the best way to share that information,” he said, adding that other, more official “windows” were more appropriate.
“We didn’t want to draw too much attention by disclosing that information at such a prestigious venue,” he said, adding that Armorize wanted to keep good relations with the agencies involved and continue to be part of the community, something that could have been jeopardized had the information been publicized at Black Hat.
On whether the apprehensions expressed by the various agencies stemmed from concerns over what the talk would reveal about the level of Chinese cyber espionage or the company’s sources and means of collection, Huang said “both.”
He said that from the perspective of the private sector, it was difficult to tell whether the Ma Ying-jeou (馬英九) administration’s efforts to foster closer ties with Beijing had resulted in more pressure to pull the talk.
Asked to confirm if the agencies were governmental, he said the report drew from “multiple sources,” including military, security, intelligence, law enforcement and the private sector.
“We can’t really say who owns the intelligence,” Huang said. “It’s not the raw data that matters, it’s how you spend time analyzing the raw data over 10 years to draw conclusions.”
Santa Clara, California-based Armorize was incorporated in 2006. The company’s R&D center is located in the Nangang Software Park in Taipei.
Although talks have been pulled from the Black Hat conference before, it usually resulted from pressure by the private sector threatening to sue the presenters.
Huang, who used to work as a senior consultant at the Taiwan Information Security Center and a research engineer at the Institute of Information Science at Academia Sinica, gave a version of the talk at a small conference in Taipei in 2007.
As the world’s top security conference, Black Hat would have brought the message to a far larger audience, especially as attendees would have been allowed to record it, something that was prohibited in Taiwan.
A former National Security Council official last week told the Taipei Times that Taiwan served as a “testing ground” for professional Chinese hackers, adding that only after an attack had successfully penetrated Taiwanese systems would China use the same techniques to try to infiltrate other targets.
Taiwan has developed a unique expertise in protecting against and identifying Chinese cyber attacks, skills that have been recognized by several countries, the official said.
The official said Taiwanese intelligence had established that China had about 300,000 professional hackers employed by the government, focusing on an estimated 10,000 “priority” targets in Taiwan, which include both government agencies and the private sector.
Commenting on Huang’s talk in 2007, White Hat Security chief technology officer Jeremiah Grossman said Taiwan’s cyber crime environment was “way more serious than anything I’ve ever been exposed to in the US or elsewhere,” IDG wrote.
HEATED TRAFFIC: As Beijing holds naval drills near Taiwan, the Ministry of National Defense said it had a full grasp of the situation and would handle it ‘appropriately’ A Chinese carrier group exercising near Taiwan is part of what are to be regular drills, the Chinese navy said in a statement late on Monday, further escalating tensions between Taipei and Beijing. The group, including the aircraft carrier Liaoning, was conducting “routine” drills in the waters around Taiwan, a move to “enhance its capability to safeguard national sovereignty, safety and development interests,” the statement said. “Similar exercises will be conducted regularly,” it said, without elaborating. The statement came after the Ministry of National Defense earlier on Monday issued a statement regarding a rise in the number of incursions by Chinese jets into
AIMED AT TAIWAN? Institute for National Defense and Security Research research fellow Ou Si-fu said chips can be ‘bought off the shelf’ and then used in weapons The Ministry of Economic Affairs (MOEA) yesterday said that chips from Taiwanese semiconductor companies were not making their way into Chinese missiles “to the best of our knowledge.” A report in yesterday’s Washington Post alleged that a Chinese company named Phytium Technology Co (飛騰) used chips made by Taiwan Semiconductor Manufacturing Co (TSMC, 台積電), along with US software, in advanced Chinese military systems. “TSMC has long placed strict controls on their chips. The export of high-tech products from Taiwan is also highly regulated,” Minister of Economic Affairs Wang Mei-hua (王美花) said. “According to our understanding, none of the end uses for those products
NO TIME: The driver tried to apply the brakes when he saw the truck, but the train did not have time to come to a full stop, an investigation report said The crane truck that caused last week’s fatal train accident had slid onto the tracks about one-and-a-half minutes before it was struck, the Taiwan Transportation Safety Board said yesterday. The board had launched an investigation into the derailment, which killed 50 people and injured 211 people, making it the nation’s most devastating railway accident in decades. Carrying 494 passengers and four Taiwan Railways Administration personnel, the southbound express train to Taitung hit the truck as it was about to enter the Cingshuei Tunnel (清水隧道) in Hualien’s Sioulin Township (秀林). The train derailed following the collision, with the left side of the eighth
TAROKO INCIDENT: The committee would regulate how public donations for victims of Friday’s train accident, which have exceeded NT$60 million, would be used The government has collected about NT$60 million (US$2.1 million) in donations through Line Pay and convenience stores for victims of last week’s fatal train accident and plans to establish an oversight committee to determine how the funds should be used to help them, Minister of Health and Welfare Chen Shih-chung (陳時中) said yesterday. The accident occurred at 9:28am on Friday, when a southbound Taroko Express train traveling from New Taipei City to Taitung hit a crane truck that had slid down a hill from a nearby construction site onto the rails as the train was about to enter the Cingshuei Tunnel