Press Release
  
 

Email this articleGovernment Homepage

Speech by Deputy Director of Information Technology Services at Information Security Showcase 2003

*********************************************************

Following is the opening address (English only) delivered by the Deputy Director of Information Technology Services, Mr Stephen Mak Hung-sung, at the Information Security Showcase 2003 this morning (June 16):

Dr Keung, Distinguished Guests, Ladies and Gentlemen,

Good morning! I am delighted to be here to join you at the opening ceremony of the Information Security Showcase 2003. Now in its fourth year, this event is becoming a major icon on our IT calendar. It also indicates the growing demand for expert advice, technology solutions and best practice knowledge on information security as electronic commerce is making headway in Hong Kong.

The SAR Government is committed to making Hong Kong a leading e-business community and digital city in the globally connected world. We have made notable progress, as evidenced by some of the recent international benchmark rankings. Information security is an important pillar to support the fast pace with which our e-business environment needs to develop. Over the past three years, we have seen a gradual reduction in the number of reported information security incidents, based on surveys on a representative sample of local companies, a good sign indeed. On the other hand, we are seeing an increase in the extent of damage, financial loss, or service interruption caused by each incident. So there is still work to be done.

Since 1998, when we published our first Digital 21 Strategy for IT development, we have made substantial progress on a number of important information security related initiatives. Our Electronic Transactions Ordinance, which was enacted in January 2000, provides a clear legal framework to support the conduct of transactions electronically by businesses and individuals. In view of the fast changing environment in the e-business arena, Government completed a public consultation exercise last year to gather public input for the review of the Ordinance. As you may have noticed, the Electronic Transactions (Amendment) Bill 2003 was gazetted last Friday and would be tabled at the Legislative Council later this month. The Bill seeks to further advance Government's policy objective of facilitating electronic transactions. We believe it will be conducive to wider adoption of paperless transactions and e-business in the community.

With the support of the Hong Kong Productivity Council, we facilitated the establishment of the Hong Kong Computer Emergency Response Team Co-ordination Centre (HKCERT/CC) in February 2001, which has greatly enhanced Hong Kong's capability to respond to information security incidents and access to relevant information. I should like to take this opportunity to commend the colleagues in the HKCERT for their effort and contribution in up-keeping the e-security frontier of Hong Kong.

We have also established a security architectural framework through the provision of the Public Key Infrastructure and the Voluntary Recognition Scheme for Certification Authorities, to improve public confidence in electronic transactions.

With the advent of new technologies, high security and convenience can go together. I should mention another important IT initiative in Hong Kong - that is the replacement of some seven million identity cards with a Multi-Application Smart ID Card (or MASC in short) for our citizens. It will be one of the largest multi-application smart ID card projects in the world. We believe the MASC has great potential to facilitate business sectors, public organisations and government departments to deliver electronic services in a more secure, efficient and cost-effective manner on a common and convenient platform. The MASC will be progressively issued later this month. Very soon, all of us will be able to experience the benefits of the smart ID cards with improved protection on data security, data privacy and greater convenience.

Notwithstanding all the supporting facilities being put in place, we cannot rely solely on the efforts of the Government or the information security industry without the concerted efforts of the whole community. To develop a secure and reliable e-community, public education plays a key role through raising security awareness and promoting ethics. Information security is indeed everybody's business.

Recognising this need, we have set up an InfoSec website last year to provide a one-stop portal to enhance the public's access to various information security related resources and updates. The website "www.infosec.gov.hk" is designed to address the different needs of groups of audiences so that they can readily obtain information relevant to their focus. It is proving to be a very popular site and apart from accessing it you are more than welcome to contribute your comments and content to it.

During the past few months, Hong Kong and many other places have experienced the SARS problems brought about by a virus or its variants. It has also highlighted the importance of risk assessment, crisis and contingency management, public education, awareness and promotion, as well as collective efforts and discipline in preventing and combating the effects of the disease. There is a complete analogy between this and the impact brought about by computer viruses and other forms of information security incidents. Today's event provides an excellent opportunity for all of us to exchange ideas and share the insight of our industry experts on information security on a broad range of topics and products. I am sure your participation in this event will be a rewarding experience.

Finally, I would like to congratulate the Hong Kong Productivity Council for staging this very informative event again and the many supporting organisations for their participation and contributions. I wish the Information Security Showcase 2003 every success.

Thank you.

End/Monday, June 16, 2003

NNNN

Email this article