U.S.-Japan Joint Statement on Cyber Security

Sept. 9, 2003

The increasing number of cyber attacks and the interdependence of global information networks places responsibility on all nations to respond to the challenge of securing critical information infrastructures. The Governments of Japan and the United States recognize the importance of ensuring the security and reliability of information systems and networks as well as both countries' roles as global leaders to create a "culture of security." To this end, the two Governments will share information and perspectives regarding the challenge of securing information systems and networks, and raise awareness and highlight best practices in addressing cybersecurity issues and the importance of public-private partnerships in implementing effective cybersecurity initiatives.

Specifically, both Governments affirm that:

  • The Governments cannot alone sufficiently defend cyberspace. Critical infrastructure protection is a shared responsibility of the public and private sectors.
  • The Governments will foster public-private partnerships, which can be used to raise security awareness, train personnel, identify and remediate vulnerabilities, exchange information, and plan recovery operations.
  • The Governments should identify and empower a centralized authority able to develop and coordinate national cybersecurity policies and plans in a holistic intergovernmental manner to provide effective management and oversight of information cybersecurity programs.
  • The Governments are encouraged to work within the appropriate multilateral fora - such as APEC, the G-8, and OECD - to implement cybersecurity and cybercrime recommendations and action plans that are adopted in these fora.
  • The Governments should establish, via whatever means determined appropriate, watch and warning agencies and mechanisms for the exchange of cyber incident warnings, vulnerability information, event analysis, and remediation.
  • The Governments should take an initiative to facilitate public-private partnerships in order to encourage the development of private sector cybersecurity initiatives.
The United States and Japan affirm the importance of national approaches to cybersecurity, including an emphasis on a focal point within each Government for coordination efforts and partnerships with the private sector. The United States and Japan also affirm the importance of multilateral cooperation for cybersecurity, including the international adoption of the Council of Europe Convention on Cybercrime.

In Japan, the Cabinet Secretariat's IT Security Office was established to develop countermeasures against cyber attacks and to protect e-government. The Government of Japan recognizes that the IT Security Office is the lead coordinator and focal point in the Japanese Government's cybersecurity efforts. As the Government of Japan recognized in its e-Japan II Strategy, it is vitally important to strengthen cooperation among the various government agencies involved in cyber-security by ensuring alternative operation of information systems, monitoring of operational situations full-time, creating a system for dealing with emergencies, and gathering and sharing information on information system security. Thus, the IT Security Office will be responsible for various activities, including advising Ministries in the development of coordinated information technology security policies, working with prefectural and local governments, and building public/private partnerships.

The U.S. Department of Homeland Security's National Cyber Security Division is, among other things, the focal point for U.S. Government cybersecurity efforts to reduce the vulnerability of critical infrastructure or key resources, and it coordinates those efforts - including partnerships with the private sector and state/local governments - with relevant U.S. Departments and agencies. The Department also coordinates closely with the Department of State on international issues, which has the lead for U.S. foreign policy. The Department of Justice (DOJ) and the Federal Bureau of Investigation (FBI) lead the national effort to investigate and prosecute cybercrime. The Homeland Security Council (HSC) at the White House ensures coordination of all homeland security-related policy among federal and executive agencies to secure the homeland, including key critical physical and cyber infrastructure and assets.