The Russian Federal Security Service (FSB), together with the Russian Federal Agency on Technical Regulation and Metrology (Rosstandart), plans to design new standards of cryptographic protection of information, with the aim of their further certification, in accordance with the requirements of FSB and Federal Service for Technical and Export Control, according to official representatives of both state services.
Implementation of these plans will be part of the recently approved Russian 'Digital Economy' state programme.
Alexei Urivsky, a senior expert of the Rosstandart Committee for Standardisation of Cryptography told SC Media UK that these plans involve the design of entirely Russian cryptographic algorithms, which will be used for cryptographic protection of information in Russia and could be recommended during the design of international blockchain standards.
Currently tcryptographic means of information protection in Russia is strictly regulated by the state and the FSB, which means local state agencies and some corporations (particularly those affiliated with the state) must only use FSB-certified blockchain solutions.
Urivsky has also added that one such solutions is the Russian blockchain platform Masterchain, designed in accordance with Russian State All-Union standards.
As Nikolay Nikiforov, the Russian Ministry of Communications told SC magazine via an official representative, currently leading independent Russian cyber-security experts are working together with the FSB on improved security and removing shortcomings in the new platform. According to Nikoforov, probably the most acute problem is related with the possibility of data leakage.
According to Nikiforov, use of the new Russian blockchain platform will contribute to a reduction of the number of cyber-attacks on both Russian and foreign banks that use Masterchain.
This will be achieved through the use of a KYC (Know Your Customer) service on the platform. The existence of such a service will prevent fraudulent transactions by exchanging information about customers among the banks in the system.
At the same time, it is claimed that use of the new system will not be associated with any violations of confidentiality of information or leakage of personal data.
According to experts at the Russian Ministry of Communications, previous efforts to establish closed blockchains for banks and financial institutions in Russia failed, mainly due to the presence of direct competitors in the network, which was associated with risks of disclosure of personal information and information about transactions.
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout