• News
• Events
• Activities
• Publications

• about
• contact
• login

TF-CSIRT Activities

Seminars addressing the latest issues in computer security

The Task Force meets three times a year. One- or half-day seminars are usually organised in conjunction with these meetings, in order to present the latest developments in computer security, and discuss issues of common interest to the participants.

Trusted Introducer Service

The Task Force established and maintains a supervisory role with respect to the Trusted Introducer Service that lists and accredits incident response teams in the European region. The service is currently operated by S-CURE in co-operation with PreSecure and DFN-CERT.

Training of CSIRT staff

The Task Force reviews the requirements for training CSIRT staff on an ongoing basis, and promotes the development and delivery of appropriate training materials to meet these needs. Training is primarily undertaken through the TRANSITS Training Courses.

Assisting with the establishment of CSIRTs

Many organisations are interested establishing their own teams to handle computer security incidents. The abundance of information in the field just adds to the sheer dimension of the problem, which is why the task force developed the CSIRT Starter Kit and operates the CSIRT Mentoring Scheme.

Request Tracker for Incident Response

The Task Force defines requirements, and supervises the ongoing development of the RTIR (Request Tracker for Incident Response) incident handling software used by many CSIRTs. This work is undertaken by the RTIR Working Group.

Security Contact Information for Internet Resources

The Task Force supports the deployment of abuse contact lookup mechanisms (e.g. IRT objects) in Regional Internet Registries. It also helps improve documentation and procedures, and reviews privacy and data protection regulations that relate to this.

Clearing House of Incident Handling Tools (CHIHT)

The Task Force maintains a web-based clearing house for security software, covering both free software and commercial products. The focus of the clearing house is on tools that are in actual use in CSIRTs. CHIHT is currently maintained by DFN-CERT.

Incident Handling and Security Guidelines for NREN Grids

The Task Force monitors security developments in Grid communities, and liaises with them to encourage the adoption of good security and incident management practice.

Liaison Activities

TF-CSIRT has established formal communication channels with FIRST, ENISA, APCERT, and the GN2 Joint Research Activity for Network Security.

Past Activities

• IODEF - Incident Object Description and Exchange Format
• IRT Object
• VEDEF - Vulnerability and Exploit Description and Exchange Format WG