- May 4, 2021
- 2,421
| TYPE | Infrastructure |
| CLIENT | Thailand |
| PROJECT | NSST 1.5 (National Security System of Thailand 1.5) |
| PROJECT COST | 670,000,000.00 |
| COMPLETION DATE | 15/05/2024 |
| PROJECT INFORMATION | Project Executive Summary High Level Overview Authorized and assessed for publication National Intelligence Agency (NIA) In collaboration with The Government of the Republic of Thailand, The Ministry of Transport, The Ministry of Industry, The Ministry of Energy, The Ministry of Digital Economy and Society, The Ministry of Interior, The Ministry of Defense, The National Broadcasting and Telecommunications Commission, The National Cyber Security Agency, The National Assembly of Thailand, The Senate of Thailand, The Provincial Assemblies, The Municipal/City Councils, The Community Assemblies, GlobalTech Infrastructure Solutions, Power Line Engineering, SOSECURE, Republic Thai Police, Republic Thai Armed Forces, Metropolitan Police Bureau, Provincial Police Bureaus, The Business Council of Thailand, Thai Chamber of Commerce, Federation of Thai Industries, Thai Bankers' Association, Thai Software Industry Association, King Mongkut's University of Technology, Chulalongkorn University, Thammasat University, Asian Institute of Technology, and National Science and Technology Development Agency. Presented The NSST 1.5 (National Security System of Thailand 1.5) ––––––––– Building upon the robust infrastructure of the NSST 1.0 first developed by the NIA in 1999 to the current iteration from 2002, the CipherShade hacker group has shown that in this ever-evolving digital landscape, cyber-attack and operational technology system interruption can work in tandem to crate threat to the national security interest, and most important, human’s inherent rights to digital privacy. The NSST 1.5 has been in development since mid-2002 since the release of NSST 1.0, a world-changing security system. Today, with almost two years of research and development, testing, planning, and arranging, stakeholders across Thailand come together to deliver this meticulously planned nationwide infrastructure project. With over 200,000 workers being hired to participate in this aggressive enhancement, the three months timeframe has been secured by the pre-arranged contract, completed procurement processes, substantial financial resource, highly modular and standardized architecture, advanced automations, orchestration tools, prefabricated and pre-configured components, and parallel testing. The NSST 1.5 represents a major upgrade and substantial addition of new features and functionalities while the complete overhaul of the NSST architecture is absent. This version introduces the Secure Electronic Infrastructure Integration (SEII), a component that securely integrate various electronic infrastructure systems across cities and municipalities into the NSST 1.0 framework, enabling centralized monitoring, control, and protection of these critical systems. But most importantly, the SEII is completely integrated into the robust framework of the NSST. Furthermore, it is designed for future integration, meaning that a system would be in place to facilitate any integration of the NSST infrastructure immediately. The Integrated Operations Center (IOC) is established in Bangkok, which will observe the enlargement of the NIA, including the complete overhaul of the Paruskavan Palace into a traditional Thai building surrounded by multi-floors building and underground floors and network system. Everything additions are operated on the foundation and framework of the previous Paruskavan Palace project. The IOC serves as a centralized command and control hub for monitoring and managing various electronic systems across cities and municipalities. The IOC would facilitate real-time situational awareness, incident response, and coordinated decision-making. Additionally, each province and municipal will have a dedicated sub-IOC in their highest-executive building. The Industrial Control Systems (ICS) Network is a dedicated and highly secure ICS network of NSST standard to connect and manage critical electronic infrastructure components, such as CCTV systems, traffic light controllers, building access control systems, and other operational technology (OT) devices. This network is isolated from the traditional IT network and employ robust security measures, including air-gapping, network segmentation, and strict access controls. The SEII incorporates SCADA systems into the NSST 1.5 architecture to enable remote monitoring and control of various electronic infrastructure components. SCADA systems can provide real-time data acquisition, visualization, and control capabilities for systems such as water treatment plants, power grids, and transportation systems. Secure remote access and management capabilities are in place for authorized personnel of NSST posture to monitor and control electronic infrastructure components from the IOC or other designated locations. Virtual private networks (VPNs), multi-factor authentication (MFA), and access control lists (ACLs) are the foundation for this capability. The SEII also implements specialized cybersecurity measures tailored for OT systems, such as intrusion detection and prevention systems (IDS/IPS) designed for industrial control systems, OT-specific vulnerability management, and secure firmware updates for electronic infrastructure components. The SEII redundancy and failover mechanisms follow the NSST architecture standard to ensure the availability and continuity of critical electronic infrastructure components. The example is deploying redundant systems, implementing automatic failover procedures, and establishing disaster recovery plans. Incident response and forensic capabilities are developed to specifically tailor for OT systems and electronic infrastructure components. The prospect of training specialized personnel, acquiring OT-specific forensic tools, and establishing procedures for incident containment, recovery, and investigation are already completed during the two years development of the NSST 1.5. The SEII integrates the electronic infrastructure monitoring and control capabilities with the Counterintelligence Service (CIS) of NSST 1.5. The CIS now has expanded jurisdiction to detect and respond to potential insider threats, cyber-attacks, or unauthorized activities targeting critical electronic infrastructure components. There are secure mechanisms for software updates and patch management for electronic infrastructure components. |
| ENCRYPTED | No |
