Computer emergency response team

The name computer emergency response team is the historic designation for the first team (CERT/CC) at Carnegie Mellon University (CMU). CERT is now a registered service mark of Carnegie Mellon University that is licensed to other teams around the world. Some teams took on the more generic name of CSIRT (Computer Security Incident Response Team) to point out the task of handling computer security incidents instead of other tech support work. Because CERT is a registered trademark owned by Carnegie Mellon University, it should not be used interchangeably with CSIRT.^[1]

The history of CSIRTs is linked to the existence of malware, especially computer worms and viruses. Whenever a new technology arrives, its misuse is not long in following. The first worm in the IBM VNET was covered up. Shortly after, a worm hit the Internet on November 3, 1988, when the so-called Morris Worm paralysed a good percentage of it. This led to the formation of the CERT/CC at Carnegie Mellon University under a U.S. Government contract. With the massive growth in the use of information and communications technologies over the subsequent years, the now-generic term "CSIRT" refers to an essential part of most large organisations' structures.

CSIRT Organizations

Global

Forum of Incident Response and Security Teams (FIRST) is the global association of CSIRTs.

North America

In the USA most CSIRTs cooperate with CERT-CC at CMU, which serves as the nationwide coordination center and is a major point of contact for corporations such as Apple Inc..^[2]

• CERT Coordination Center, Carnegie Mellon University
• US-CERT, United States Department of Homeland Security

Europe

CSIRTs in Europe collaborate in the TERENA task force TF-CSIRT. TERENA's Trusted Introducer service provides an accreditation and certification scheme for CSIRTs in Europe. A full list of known CSIRTs in Europe is available from the Trusted Introducer website.

Asia-Pacific

CSIRTs in the Asia-Pacific region collaborate in APCERT (Asia-Pacific Computer Emergency Response Team). A full list of CSIRTs in the Asia-Pacific region that are members of APCERT is available from the APCERT website.

• MOCERT, Macau

Other Countries

• ID-SIRTII, Indonesia
• Q-CERT, Qatar
• CERT.br, Brazil, member of FIRST (Forum of Incident Response and Security Teams)
• CSIRT-ANTEL, An incident response team for ANTEL in Uruguay
• Ar-CERT, Argentina, also a member of FIRST (as of Feb/22/2012 the page redirects to the new critical infrastructures CERT program of the Argentine government).
• Saudi Arabian CERT
• Colombia CERT/CSIRT Colombia
• Brazil CERT
• AE CERT, United Arab Emirates
• CSIRT CHILE, Chile
• UZ-CERT, Uzbekistan Computer Emergency Response Team (Uzbekistan)
• IrCERT, Iran Computer Emergency Response Team, Iran
• ShirazAPA, Shiraz University, Iran
• SharifCERT, University-Based Computer Emergency Response Team, Sharif University of Technology, Iran
• Côte d'Ivoire-Computer Emergency Response Team, Côte d'Ivoire
• Romanian National Computer Security Incident Response Team, Romania
• Macau Computer Emergency Response Team Coordination Centre, Macau

See also

Computer Security portal

• Computer security
• Incident management
• Information security

References

Software Engineering Institute, Carnegie Mellon University. "Trademarks and Servicemarks." Software Engineering Institute website. 2012. http://www.sei.cmu.edu/legal/marks/index.cfm

1. Software Engineering Institute, Carnegie Mellon University. "Trademarks and Servicemarks." Software Engineering Institute website. 2012. http://www.sei.cmu.edu/legal/marks/index.cfm
2. "Security". apple.com. "Apple cooperates closely with organizations such as the Computer Emergency Response Team Coordination Center (CERT/CC)" 

External links

• CERT-CC website
• FIRST website
• TF-CSIRT webpages
• Trusted Introducer website
• APCERT website