Digital dai-ichi: with right balance, Japan can shape its hyperscale future
26 Jun 2025|

Japan’s digital rise hinges on adopting hyperscale cloud computing without ceding strategic autonomy—a balance it has yet to strike.

Japan’s hyperscale strategy must walk a tightrope—balancing the immense benefits of cloud infrastructure with the imperative of national control. The solution is not isolation, but integration: fusing trusted foreign hyperscalers with sovereign policy, secure design and a workforce capable of defending it.

Japan’s ambitions, from the Society 5.0 vision to regional tech leadership, depend on hyperscale infrastructure. Society 5.0 aims to solve domestic social challenges through innovation and this infrastructure underpins the nation’s push to transform governance, stimulate innovation and ensure economic resilience. But opportunity brings risk: foreign dependency, lagging domestic capacity and intensifying cyber threats expose structural vulnerabilities.

Additionally, Japan’s digital transformation hinges on a critical enabler: energy. Data centres—especially hyperscale facilities—are energy intensive. Japan’s projected doubling of data centre capacity from 2.0 gigawatts in 2024 to 4.0 gigawatts by 2030 highlights the importance of reliable energy supply to meet AI-driven computing demand.

The government’s Vision for a Digital Garden City Nation and GovCloud initiatives aim to modernise public services, enable AI-driven governance and enhance national crisis response. These strategic platforms are already operationalising that vision: tools such as Spectee Pro harness hyperscale cloud to deliver real-time disaster insights, while  GovCloud lays the foundation for scalable, secure digital infrastructure across ministries. Together, these capabilities strengthen Japan’s domestic resilience and serve Japan’s soft power, positioning it as a model for digital governance in the Indo-Pacific.

Foreign investment has rapidly followed. Microsoft has committed US$2.9 billion for AI and cloud infrastructure in Japan, Oracle plans to spend more than US$8 billion for AI and cloud computing services and Google has announced US$1 billion to expand subsea cable connectivity through the Pacific Connect initiative.

However, this promising growth faces friction. Substation capacity shortages in data centre hubs including Inzai could delay deployment for up to a decade. Land scarcity, rising construction costs and a limited contractor base, including for data centre construction and maintenance, further constrain expansion.

Decentralisation via the Digital Garden City Superhighway may help rebalance workloads, but coordinating regional resilience at scale introduces new policy and resource challenges.

Japan’s cloud market is dominated by foreign hyperscalers. Domestic providers (NEC, IDC, and NTT) together hold a market share of only about 30 percent. This raises concerns of vendor lock-in and exposure to foreign policy decisions compelling prioritisation of home country needs, especially during geopolitical strain.

The Economic Security Promotion Act (ESPA) seeks to mitigate these risks by designating cloud infrastructure as a critical asset and directing approximately US$500 million to support sovereign cloud and AI compute capabilities. Yet this pivot introduces a policy paradox: aggressive self-reliance could slow the adoption of globally advanced tools, including those vital to next-generation AI development.

Bridging Japan’s hyperscale ambition with operational reality demands more than a policy shift. It requires a national effort leveraging strengths in advanced manufacturing, industry leadership, and research and development. The challenge for Japan’s government is to enable, not direct, fostering an environment where industry can innovate at speed and scale. To translate digital ambition into secure, resilient outcomes, Japan will need to consider coordinated measures across cybersecurity, infrastructure, talent, architecture and legislative reform.

The sheer size of hyperscale systems makes them high-value targets for state-sponsored cyberattacks, cybercriminals and hacktivists. For example, in 2023 Japan’s space agency, JAXA, suffered a series of cyberattacks seemingly linked to China. Consequently, to fully leverage hyperscale systems Japan will also need to prepare for the evolving cyberthreat landscape.

This will require deep visibility into supply chains, software dependencies and global data flows. Japan’s recent legislative reforms—notably the Active Cyber Defense Bill, which was passed in early 2025 and will be effective from 2027—and inauguration of a dedicated position of economic security minister in 2021, signal integrated enhancement of its national capabilities to pre-empt threats at their source rather than solely focusing on mitigating their domestic consequences.

This involves expanding ESPA’s scope to audit critical cloud infrastructure components and promote diversified sourcing. Redundancy needs to be built into supply chains domestically and through partnerships with trusted allies, enhancing resilience against external shocks.

Japan’s national cybersecurity strategy calls for trust-building with cloud providers and integration of intelligence flows, yet public-private cooperation remains fragmented. Without a legal framework for information sharing and liability protections, incident response will likely stay reactive and inconsistent.

To build a resilient hyperscale ecosystem, Japan must accelerate energy and zoning approvals—particularly in regions outside Tokyo where power and land constraints are less acute. Incentives should also support regional hubs through targeted subsidies and regulatory coherence across prefectures.

Addressing the nation’s cyber talent shortage is equally crucial. Japan faces a shortfall of 200,000 cybersecurity professionals by 2025. Years of outsourcing have weakened its domestic capabilities, constraining hyperscale ambitions. Japan (and others, such as South Korea) should consider investing in national cyber academies, vocational training and public-private university partnerships to grow specialised talent at scale.

Architecturally, Japan should adopt a sovereign-by-design cloud model that blends foreign and domestic cloud providers in a hybrid ecosystem with robust legal and technical safeguards. Strong encryption, access controls and enforceable data governance standards must be foundational to ensure operational sovereignty and compliance with national security objectives.

Legal frameworks should also be updated to enable structured information sharing between government and industry, including protections for liability. Without these guardrails, real-time threat intelligence will remain siloed and under-utilised.

By investing in infrastructure, talent and digital sovereignty, Japan can shape a hyperscale future that strengthens—not compromises—its economic security and alliance credibility. As cloud becomes contested terrain, Japan must lead like a digital power prepared to defend its digital frontier.

Author

Nishank Motwani is a senior fellow and director of alliance strategy with ASPI USA. This article is provided as part of ASPI’s partnership with Microsoft, which includes fostering informed debate about cybersecurity and technology adoption in the Indo-Pacific and about Australia’s role in these areas.

 

Image: metamorworks/Getty Images.

Tags
Share

The Strategist — The Australian Strategic Policy Institute Blog. Copyright © 2025