Acrónimos: CERT
Ver:
·
FIRST -
Forum of Incident Response and Security Teams
·
http://www.cert.org/
·
http://www.ietf.org/rfc/rfc2350
Organización
especializada en responder inmediatamente a incidentes relacionados con la
seguridad de las redes o los equipos. También publica alertas sobre amenazas y
vulnerabilidades de los sistemas. En general tiene como misiones elevar la
seguridad de los sistemas de los usuarios y atender a los incidentes que se
produzcan.
Typically an operational
team or centre that provides advice and mitigations against cyber attacks for
businesses, government and individuals. [CSS NZ:2011]
(I) An organization that
studies computer and network INFOSEC in order to provide incident response
services to victims of attacks, publish alerts concerning vulnerabilities and
threats, and offer other information to help improve computer and network
security. (See: CSIRT, security incident.) [RFC4949:2007]
A team that provides initial
emergency-response aid and triage services to the victims or potential victims
of cyber operations or cyber crimes, usually in a manner that involves
coordination between private sector and governmental entities. These teams also
maintain situational awareness about hacker activitiesand new developments in
the design and use of malware, providing defenders of computer networks with
advice on how to address security threats and vulnerabilities associated with
those activities and malware.
The Tallinn Manual, 2013
Group of individuals usually
consisting of Security Analysts organized to develop, recommend, and coordinate
immediate mitigation actions for containment, eradication, and recovery
resulting from computer security incidents. Also called a Computer Security
Incident Response Team (CSIRT) or a CIRC (Computer Incident Response Center,
Computer Incident Response Capability or Cyber Incident Response Team). [CNSSI_4009:2010]
(I) An organization
"that coordinates and supports the response to security incidents that
involve sites within a defined constituency." [R2350]
(See: CERT, FIRST, security incident.) [RFC4949:2007]
A capability set up for the
purpose of assisting in responding to computer security-related incidents; also
called a Computer Incident Response Team (CIRT) or a CIRC (Computer Incident
Response Center, Computer Incident Response Capability). [NIST-SP800-61:2004]
An organization that studies
computer and network INFOSEC in order to provide incident response services to
victims of attacks, publish alerts concerning vulnerabilities and threats, and
offer other information to help improve computer and network security.
A CERT is an organisation
that studies computer and network security in order to provide incident
response services to victims of attacks, publish alerts concerning
vulnerabilities and threats, and to offer other information to help improve
computer and network security.
http://www.enisa.europa.eu/
Over time, the CERTs (see
above) extended their services from being a mere reaction force to a more
complete security service provider, including preventive services like alerting
or advisories and security management services. Therefore, the term CERT was
not considered to be sufficient. As a result, the new term CSIRT was
established in the end of the -90-ies. At the moment, both terms (CERT and
CSIRT) are used in a synonymous manner, with CSIRT being the more precise term.
http://www.enisa.eu.int/
An organization that studies
computer and network INFOSEC in order to provide incident response services to
victims of attacks, publish alerts concerning vulnerabilities and threats, and
offer other information to help improve computer and network security.
http://www.sans.org/security-resources/glossary-of-terms/
Organisation
spécialisée dans la gestion et la réponse aux incidents informatiques. Elle est
en charge du suivi de l'incident (enregistrement) afin d'en déterminer la cause
et de trouver des actions correctives. A l'origine, il s'agit d'une
organisation américaine (Institut de génie logiciel de l'université de Carnegie
Mellon ? Pittsburgh / USA) spécialisée dans la sécurité informatique. Depuis,
chaque pays industrialisé à mis en place au moins une structure CERT nationale,
qui établit également des alertes sécurité relatives aux failles détectées et
aux solutions de protection en fonction des incidents relevés au niveau
international.
http://www.cases.public.lu/functions/glossaire/
Équipe de l'université
de Carnegie-Mellon, créée en 1988 après une célèbre diffusion d'un ver (worm)
sur Internet, et dédiée à la veille en sécurité informatique.
CERT publie régulièrement des avis/alertes sur les
failles de sécurité découvertes.
Le modèle du CERT est
classiquement repris au sein des grandes entreprises ou administrations pour
constituer des équipes de veille en sécurité ou de réaction sur incident de
sécurité (Security incident response team). En France, le CERT/A assure cette
fonction vis-à-vis des grandes administrations françaises.
http://securit.free.fr/glossaire.htm
CERT français, CERT/A
est une structure d'alerte et d'assistance chargée de coordonner les réactions
aux attaques sur les systèmes d'informations des administrations de l'État. Le
CERT/A est rattaché à la Direction Centrale de la Sécurité des Systèmes
d'Information (DCSSI).
http://www.certa.ssi.gouv.fr/