Officials are calling out for tenders from security contractors on behalf of government bodies and universities in Singapore in response to the series of incidents which saw the republic's government websites being defaced or disabled last year. The tender will close next Monday (7 July 2014).
According to The Straits Times report today (4 July 2014), the tender document stated that potential contractors will be tasked to ensure that government websites are fully accessible and available to the public at all times, even when they are being attacked.
Distributed Denial of Service (DDoS) attacks is one of the common causes of a website outage. It works by having a huge number of compromised computers accessing a particular site at the same time, resulting in a huge spike in traffic. Potential security contractors can counter this by providing DDoS mitigation service, which will differentiate genuine incoming traffic from that sent by malicious browsers. By doing so, genuine users will still be able to access the website even when the site is experiencing DDoS attacks.
Besides implementing DDOS mitigation services, the potential security contractors will also need to provide Web application firewalls to block hackers from exploiting vulnerabilities, reported The Straits Times.
Moreover, these contractors will be expected to work with the government's Cyber Watch Centre, which is managed by locally based security services provider e-Cop, to continuously monitor critical public sector IT installations to thwart threats.
Sign up for CIO Asia eNewsletters.