Computer Emergency Response Team
A Computer Emergency Response Team ( CERT ), also known as Computer Security Incident Response Team ( CSIRT ) is a group of IT security professionals, the or in the solution of specific IT security incidents (eg, discovery of new vulnerabilities in certain applications operating systems, new viruses spreading in spam-sending computers, or targeted attacks ) is involved as coordinator or quite generally deals with computer security (sometimes industry- specific) warnings out there about security vulnerabilities and solutions offered (so-called advisories, so literally, advice ). Furthermore, some CERTs help concretely, to eliminate security risks for specific target groups (eg, Bürger-CERT ). The flow of information is mostly done via mailing lists. There safety-critical issues are discussed, debated and issued warnings current.
History
After the first computer worm Morris worm occurs, the first CERT at the Software Engineering Institute was founded at Carnegie Mellon University in November 1988, which was financed by public funds of the U.S. DoD (Department of Defense ).
There are now several CERTs in different countries.
Germany
In Germany, in addition to the CERT of the University of Stuttgart and the German Research Network CERT also Mcert had established. This was mainly aimed at small and medium sized businesses. The German Association for Information Technology, Telecommunications and New Media ( BITKOM) Mcert was founded in collaboration with the Federal Ministry of the Interior and the Federal Ministry of Economics and Labour, but closed it down one in June 2007.
Tasks related to computer security in the institutions of the Federal Republic of Germany takes over since September 1, 2001, the specifically established CERT-Bund of the Federal Office for Security in Information Technology - BSI. The BSI also offers the " Bürger-CERT " and a corresponding service for private persons to.
Banking industry
The German banking industry has recognized the need for CERTs. And so, just in 2001, the S -CERT, the CERT established the Savings Banks Financial Group. Especially with the advent and combat phishing came CERTs the banking industry of great importance.
In Germany the national CERT composite promotes the development of CERTs. The CERT - Verbund was founded in 2002 by CERT-Bund, DFN -CERT, IBM BCRS, Siemens CERT, S -CERT and CERT German Telekom. The following overarching objectives were defined: " Ensuring the protection of national networks of information technology ", "Shared and rapid response to security incidents occur ."
Switzerland and Austria
The national CERT in Austria is operated by CERT.at. The Government Computer Emergency Response Team ( govCERT ) for public administration and the critical information infrastructure is operated since April 2008 by the Federal Chancellery in cooperation with CERT.at. In addition, the Austrian army has since 2013 a private milCERT element.
In Switzerland, SWITCH operates a cert like the Austrian educational and scientific network ACOnet for its own area.
Europe
In Europe promotes TF - CSIRT ( Task Force - Computer Security Incident Response Teams of the umbrella organization of the European research and education networks TERENA ) the establishment and co-operation of CERTs. To establish a relationship of trust between CERTs, the European CERTs was launched by TF - CSIRT called the Trusted Introducer, registered and accredited by formal letter. From September 2009 to August 2011 the service of S -CURE BV ( Holland ) has been adopted since. PRESECURE of the Consulting GmbH The European Network and Information Security Agency ( ENISA), the EU promotes these activities, including through support for the also spawned from TF - CSIRT Training of Network Security Incident Teams Staff ( TRANSITS ) courses. In addition, there is the Forum of Incident Response and Security Teams ( FIRST) as a global umbrella organization of CERTs and various organizations outside Europe.