Crypto exchanges keen on ISMS certification

Eundong Shin 2018. 11. 26. 18:06
음성재생 설정 이동 통신망에서 음성 재생 시 데이터 요금이 발생할 수 있습니다. 글자 수 10,000자 초과 시 일부만 음성으로 제공합니다.
글자크기 설정 파란원을 좌우로 움직이시면 글자크기가 변경 됩니다.

이 글자크기로 변경됩니다.

(예시) 가장 빠른 뉴스가 있고 다양한 정보, 쌍방향 소통이 숨쉬는 다음뉴스를 만나보세요. 다음뉴스는 국내외 주요이슈와 실시간 속보, 문화생활 및 다양한 분야의 뉴스를 입체적으로 전달하고 있습니다.

Upbit becomes first major exchange to win the authorization
[서울경제 디센터] Cryptocurrency exchanges in Korea are introducing an information security management system (ISMS) one after another to step up their cyber security. Gopax became the first domestic exchange to win the ISMS certification last month and Upbit, the largest crypto exchange, has completed the relevant certification. Other major exchanges including Bithumb are also ready to carry out the ISMS certification.

Upbit said Monday that it had won the certification from the Korea Internet & Security Agency (KISA). The exchange’s certification will be valid through 2021. Now Upbit became the first crypto exchange to win the certification among the four major exchanges designated by the Ministry of Science and ICT to undergo the certification. The ministry obliged Upbit and three other exchanges - Coinone, Bithumb and Korbit - to undergo the ISMS certification at the KISA last year.

The ISMS is a certification scheme concerning a comprehensive management system including technical and physical protection measures to secure the stability of information and communication networks. Last December the Ministry of Science and ICT obliged crypto exchanges over certain sizes in sales and visitors to face obligatory evaluations. The evaluation is to be conducted in 253 items with 104 inspection standards set.

Bithumb, Coinone and Korbit are also waiting to undergo the evaluation to win the certificate. “Upon being designated, we took measures to refine our system and have been waiting for the results of the evaluation since September. We expect to obtain the accreditation by the end of this year,” a Bithumb official said. A KISA official confirmed that the evaluation process of the three other exchanges is going on, saying, “Supplementary measures are taken for 90 days to make up for what is lacking. We asked each of them to take measures and they are being checked again.”

There has been a case of having won the certification, apart from the ministry’s obligation concerning the ISMS. For the first time in Korea, Gopax obtained the certificate last month, and two other smaller exchanges are reportedly going through the evaluation process.

Kim Ki-hong, an official at the ministry’s cyber security & threat management division, said, “Exchanges themselves are fully aware of the importance of security as security problems have hobbled them this year. Each exchange also has to name a chief information security officer (CISO) in addition to the ISMS obligation.” He also said that companies not in compliance with the ISMS obligation would face up to 30 million won in fines but penalties might be curtailed according to security measures.

/Eundong Shin Reporter edshin@decenter.kr

Copyright © 서울경제. 무단전재 및 재배포 금지.