ANALYSIS OF CYBERSECURITY INTEGRATION AND LEGISLATIVE STRATEGIES IN JAPAN
No Thumbnail Available
Date
2024-08-21
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Kyushu University
Abstract
This thesis analyzes Japan's national security strategy, which integrates cybersecurity and legislative strategies in response to evolving global cyber threats. The thesis emphasizes the growing importance of cybersecurity in an ever-evolving cyberspace, where state-sponsored cyber-attacks pose significant risks to national security, individual privacy, and economic stability. It explores Japan's proactive policies to cybersecurity integration, considering the interconnected nature of information warfare in the contemporary geopolitical landscape. Despite a historical aversion to militarization, the challenges posed by cyber threats necessitate a pragmatic response, resulting in the delicate balance between defending against cyber threats and upholding pacifist ideals. The research questions focus on understanding how Japan systematically integrates cybersecurity and information warfare measures, legislative frameworks, and proactive initiatives to fortify critical infrastructure and secure sensitive data. The literature review addresses the major policies and interventions by examining Japan's 2021 Cybersecurity Strategy, outlining the government's approach to addressing contemporary threats. The methodology employs a mixed research approach, incorporating document analysis and expert interviews of cybersecurity incidents. The analysis section will dissect secondary sources, resulting in a conclusion synthesizing key findings, academic contributions, and implications for policymakers, academics, and practitioners in cybersecurity and national security, aligning with the Cybersecurity Integration Framework (CIF) theoretical framework. The CIF model is used to assess the extent to which Japan's initiatives effectively reconcile pacifism and defensive cybersecurity measures and incorporates Pacifist Elements, Proactive Elements, Adaptability, and Integrated Analysis in its evaluation. The thesis contributes to a detailed understanding of Japan's cybersecurity strategies, highlighting the integration of information warfare, the impact of historical pacifism, and the effectiveness of legislative frameworks.
Description
Japan's cybersecurity policy is a complex strategy that balances online freedoms and national security requirements in the face of changing cyber threats. The nation's cybersecurity journey started in the early 2000s when digital risks emerged, leading to extensive plans and regulations to protect vital infrastructure, advance global stability, and stimulate economic growth. Japan's strategy is a manifestation of its historical pacifist position, skillfully incorporating defensive methods that correspond to the country's dedication to peace while guaranteeing a proactive reaction to rising threats. Since then, Japan has consistently modified its cybersecurity programs in response to new threats, such as the emergence of hybrid warfare and increased state- and non-state-sponsored cyber-attacks.
Keywords
cybersecurity, information warfare, cyber security strategy, cybersecurity law
Citation
References Books Griffiths, J. (2021).The great firewall of China. New York: Bloomsbury Publishing. Wilkins, T. (2022). Japan's Security Strategy. Barton: Australian Strategic Policy Institute. Journal Articles Bartlett, B. (2020). Japan: An exclusively defense-oriented cyber policy. In A. Segal, V. Akimenko, V., K. Giles, D.A. Pinkston, J.A. Lewis, & E. Noor (Eds) The Future of Cybersecurity across the Asia-Pacific (pp.93-100). The National Bureau of Asian Research. Bolton, D. (2021). Targeting ontological security: Information warfare in the modern age. Political Psychology, 42(1), 127-142. Carapeto, R. (2021). The Japanese Basic Act on Cybersecurity and the historical development of the Japanese legal framework for cybersecurity. International Cybersecurity Law Review, 2(1), 65-76. Catota, F. E., Morgan, M. G., & Sicker, D. C. (2019). Cybersecurity education in a developing nation: The Ecuadorian environment. Journal of Cybersecurity, 5(1), 1-19. Chan, B. S. (2023). Utilitarian Contingent Pacifism and Article 9 of the Japanese Constitution. Philosophia, 51(2), 635-657. Dunn Cavelty, M., & Wenger, A. (2020). Cyber security meets security politics: Complex technology, fragmented politics, and networked science. Contemporary Security Policy, 41(1), 5-32. Fukuda, K.(2020). Science, technology and innovation ecosystem transformation toward society 5.0. International Journal of Production Economics, 220, 107460. Goel, S. (2020). National cyber security strategy and the emergence of strong digital borders. Connections: The Quarterly Journal, 19(1), 73-86. Gustafsson, K., Hagström, L., & Hanssen, U. (2019). Long live pacifism! Narrative power and Japan’s pacifist model. Cambridge Review of International Affairs, 32(4), 502-520. Gustafsson, K., Hagström, L., & Hanssen, U. (2023). Japan's pacifism is dead. In Survival 60.6 (pp. 137-157). Routledge. Irsadanar, R. J. P. (2024). Party politics and foreign policy: The Liberal Democratic Party in Japan's security policy expansion in Southeast Asia. Asian Politics & Policy, 6(12), 209-230. Irsadanar, R.J. P. (2023). Japan and Indonesia as Middle Powers in Indo-Pacific: Towards AOIP–FOIP Synergy. Jurnal Hubungan Luar Negeri, 8(2),1-17. Jang-Jaccard, J., & Nepal, S. (2014). A survey of emerging threats in cybersecurity. Journal of Computer and System Sciences, 80(5), 973-993. Jain, P. (2022). Despite shifts, Japan’s defence and security policy remains on pacifist ground. ORF Issue Brief, (530). Jun, O. (2023). Direction of Japan’s new cybersecurity policy. Asia-Pacific Review, 30(3), 63-78. Kallender, P & Hughes, C. W. (2017), Japan’s emerging trajectory as a ‘cyber power’: from securitization to militarization of cyberspace.Journal of Strategic Studies, 40(1-2), 118-145. Karpova, A. Y., Kabanova, N. N., Maksimova, N. G., & Soboleva, E. (2016). Information warfare technologies in political discourse. In SHS Web of Conferences. Vol. 28: Research Paradigms Transformation in Social Sciences (RPTSS 2015).—Les Ulis, 2016. (Vol. 282015, p. 1048). EDP Sciences. Katagiri, N. (2020). Shinzo Abe's Indo-Pacific Strategy: Japan's recent achievement and future direction. Asian Security, 16(2), 179-200. Kure, H., & Islam, S. (2019). Cyber threat intelligence for improving cybersecurity and risk management in critical infrastructure. Journal of Universal Computer Science, 25(11), 1478-1502. Mochinaga, D. (2020). The expansion of China’s Digital Silk Road and Japan’s response. Asia Policy, 15(1), 41-60. Moser, A., & Korstjens, I. (2017). Series: Practical guidance to qualitative research. Part 1: Introduction. European Journal of General Practice, 23(1), 271-273. Nitta, Y. (2013). Japan’s approach towards international strategy on cyber security cooperation. Japan Science and Technology Agency (JST) / Research Institute of Science and Technology for Society (RISTEX), 1-6. Odebade, A. & Benkhelifa, E. (2023). A comparative study of national cyber security strategies of ten nations. Computers and Society, pp.1-28. Ogawa, H., & Tsuchiya, M. (2021). Cybersecurity Governance in Japan. International Journal of Cyber Diplomacy, pp.7-31. Rugina, J. M. (2023). Trust amidst threats: A defender's approach to navigating the cybersecurity dilemma. Journal of Economics and Political Sciences, 3(2), 78-92. Savaş, S., & Karataş, S. (2022). Cyber governance studies in ensuring cybersecurity: An overview of cybersecurity governance. International Cybersecurity Law Review, 3(1), 7–34. Taherdoost, H. (2022). Understanding cybersecurity frameworks and information security standards—A review and comprehensive overview. Electronics, 11(14), 1-20. Ukhanova, E. (2022). Cybersecurity and cyber defense strategies of Japan. SHS Web of Conferences, 134, 1-5. Ukhanova, E. (2022). Cybersecurity and cyber defense strategies of Japan. SHS Web of Conferences, 134(159), 1-5. Ukhanova, E. (2022a). Cybersecurity and cyber defence strategies of Japan. In SHS Web of Conferences (Vol. 134, p. 00159). EDP Vosse, W. (2024). Japan’s gradual shift from passive to active cyber defense: Evidence from the domestic discourse and international cooperation. Études françaises de renseignement et de cyber, (1), 89-106. Yamada, Y., Yamagishi, A., & Katsumi, B. T. (2010). A Comparative Study of the Information Security Policies of Japan and the United States. J. Nat'l Sec. L. & Pol'y, 4, 217. Policy Papers and Government Publications Basu, P. (2024, May 27). From reactive to proactive: Japan’s advances in cybersecurity and cyber defence strategies. Observer Research Foundation. https://www.orfonline.org/expert-speak/from-reactive-to-proactive-japan-s-advances-in-cybersecurity-and-cyber-defence-strategies Coole, M., Corkill, J., & Woodward, A. (2012). Defence in depth, protection in depth and security in depth: A comparative analysis towards a common usage language. Conference Paper. Government of Japan. (2017, April 18). The cybersecurity policy for critical infrastructure protection (4th Edition). https://www.nisc.go.jp/eng/pdf/cs_policy_cip_eng_v4.pdf Government of Japan. (2021). Cybersecurity Strategy 2021: Cybersecurity for All. Harari, D. (2013). Japan’s economy: from the ‘Lost Decade’to Abenomics. House of Commons Library, Standard Note SN06629. London: Oct, 24. https://www.files.ethz.ch/isn/172764/SN06629.pdf Hideshi, T. (2023, June 23).Japan’s new national security strategy and contribution to a networked regional security architecture. Center for Strategic & International Studies (CSIS). https://www.csis.org/analysis/japans-new-national-security-strategy-and-contribution-networked-regional-security Japan International Cooperation Agency (JICA). (2022). Report of the survey on awareness raising activities for cybersecurity in Japan. https://openjicareport.jica.go.jp/pdf/12363800.pdf Japan Industry News (2017).Japan’s Approach to Tackling Cybersecurity Challenges.https://www.japanindustrynews.com/2017/01/japans-approach-tackling-cybersecurity-challenges/ Lewis, J. A. (2015). US-Japan cooperation in cybersecurity. Washington, DC: Center for Strategic & International Studies. Ministry of Economy, Trade and Industry (METI). (2024, May 27). Cybersecurity. https://www.meti.go.jp/english/policy/safety_security/cybersecurity/index.html Nitta, Y. (2014). Review of the Japan Cybersecurity Strategy. ISPSW Strategy Series: Focus on Defense and International Security, Issue, 290, 1-9.https://www.files.ethz.ch/isn/183668/290_Nitta.pdf The Government of Japan. (2015, Sept.4). Cybersecurity strategy. Cabinet Decision. https://www.nisc.go.jp/eng/pdf/cs-strategy-en.pdf Soesanto, S. (2020). Japan's national cybersecurity and defense posture: Policy and organizations. ETH Zurich. Website Articles Bee, A. (2023, May 23). Key theories of international relations. Medium. Retrieved August 20, 2024, fromhttps://medium.com/@archiebee/beyond-statecraft-key-theories-of-international-relations-91911597170b#:~:text=Constructivism%20emphasizes%20the%20role%20of,harsh%20realities%20of%20power%20politics Bryja, T. (2024, Jan.17).Winning the race: The case for counterintelligence against Chinese espionage. Retrieved August 20, 2024, fromhttps://georgetownsecuritystudiesreview.org/2024/01/17/winning-the-race-the-case-for-counterintelligence-against-chinese-espionage/ Cabinet Public Affairs Office. (2015, Feb 10). The Prime Minister in action: Cyber Security Strategy Headquarters. Retrieved August 20, 2024, fromhttps://japan.kantei.go.jp/97_abe/actions/201502/10article4.html Foster, S. (2022, Dec. 20). Japan’s cyber-samurai moving out of the shadows. Asia Times. Retrieved August 20, 2024, fromhttps://asiatimes.com/2022/12/japans-cyber-samurai-moving-out-of-the-shadows/ Kyodo News. (2024, June 7).Japan PM vows to boost "active cyber defense" to prevent cyberattacks. Retrieved August 20, 2024, fromhttps://english.kyodonews.net/news/2024/06/c746af5e93e3-japan-pm-vows-to-boost-active-cyber-defense-to-prevent-cyberattacks.html Malachinski, P. (2023, May 10). Japan's Indo-Pacific strategy in cyberspace. Retrieved August 20, 2024, fromhttps://www.sciencespo.fr/ceri/observatory-indo-pacific/wp-content/uploads/2023/06/CJ_MALACHINSKI-Piotr_Final-essay.pdf Martin, A. (2023, Aug 29). Japan’s cybersecurity agency breached by suspected Chinese hackers: Report. Retrieved August 20, 2024, fromhttps://therecord.media/japan-cybersecurity-agency-breached-report Ministry of Foreign Affairs of Japan. (2024, March 29).Japan's security / Peace & Stability of the International Community: Cybersecurity. Retrieved August 20, 2024, fromhttps://www.mofa.go.jp/policy/page18e_000015.html Najah, R. (2024, July 8). Japan's NSS in the Age of Cyber Warfare: a historical transformation. Japan up Close. Retrieved August 20, 2024, fromhttps://japanupclose.web-japan.org/policy/p20240708_1.html NISC. (n.d.) Implementation framework—Japan, 2018. National Center for Incident Readiness and Strategy for Cybersecurity. Retrieved August 20, 2024, fromhttps://www.nisc.go.jp/eng/pdf/Implementation_Framework.pdf. Notre Dame International Security Center. (2022, July 21).An introduction to realism in international relations. Retrieved August 20, 2024, from https://ndisc.nd.edu/news-media/news/an-introduction-to-realism-in-international-relations/ Onodera, Y., Tanaka, H., & Shimamura, N. (2023, March 14). Cybersecurity 2023. Cybersecurity 2023 - Japan | Global Practice Guides | Chambers and Partners. Retrieved August 20, 2024, fromhttps://practiceguides.chambers.com/practice-guides/cybersecurity-2023/japan#:~:text=The%20Basic%20Act%20on%20Cybersecurity,force%20on%201%20April%202022. Osawa, J. (2023, Feb, 2). How Japan is modernizing its cybersecurity policy: In its new national security strategy, Japan includes the development of a posture for information warfare and active cyber defense. Stimson. Retrieved August 20, 2024, from https://www.stimson.org/2023/japan-cybersecurity-policy/ Public Relations Office. (2022, December). Measures to ensure security in cyberspace. Retrieved August 20, 2024, fromhttps://www.gov-online.go.jp/eng/publicity/book/hlj/html/202212/202212_09_en.html#:~:text=In%20terms%20of%20the%20role,strengthening%20systems%20of%20collecting%20and Siripala, T. (2024, June 14).Japan’s rush to play cyber defense catchup. The Diplomat. Retrieved August 20, 2024, fromhttps://thediplomat.com/2024/06/japans-rush-to-play-cyber-defense-catchup/#:~:text=The%20Kishida%20administration%20is%20looking,an%20attack%20before%20it%20escalates. Unthinkable. (2024, no date).Adaptive security architecture – Staying ahead of emerging cyber security threats. Retrieved August 20, 2024, fromhttps://www.unthinkable.co/blog/adaptive-security-architecture-staying-ahead-of-emerging-cyber-security-threats/ The Japan Times. (2024, June 7). Kishida wants active cyberdefense bill to be drawn up swiftly. Retrieved August 20, 2024, fromhttps://www.japantimes.co.jp/news/2024/06/07/japan/cyber-defense-panel/ The White House. (2023, March 1). National cybersecurity strategy. Retrieved August 20, 2024, from https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf