Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

1.1. Date of Last Update
This is version 1.3.0 4 as of May 8Oct 28, 20232024.

1.2. Distribution List for Notifications
This profile is kept up-to-date in the location specified in section 1.3.
E-mail notification of updates are sent to SUNET CERT management and investigators.
Please send any questions about updates to the SUNET CERT team e-mail address: cert@cert.sunet.se.

1.3. Locations where this Document May Be Found
The current version of this profile is always available at https://wwwwiki.sunet.se/sunet-cert-rfc-2350-profiledisplay/SUNETCERT/SUNET+CERT+RFC+2350+PROFILE

...

2. CONTACT INFORMATION

2.1. Name of the Team
Full name: SUNET CERT Computer Emergency Response Team.
Short name: SUNET CERT

...

2.10. Other Information
Further information about the SUNET CERT can be found at http://www.sunet.se/cert.
SUNET CERT is listed by the Trusted Introducer (TI) for CERTs in Europe and has been registred registered as ”TI Accredidited Accredited CERT” since 14 May 2002; see https://www.trusted-introducer.org/teams/sunet-cert.html for details. SUNET CERT is a member of Forum for Incident Response and Security Teams (FIRST); see http://www.first.org/members/teams/sunet-cert for details.

...

SUNET CERT’s hours of operation are generally restricted to regular business hours, or 08:00 to 17:00 Monday to Friday except public holidays.
For emergency inquires the phone is maintained 24/7 where the SUNET CERT can be escalated through SUNET NOC. 

...

3. CHARTER

3.1. Mission Statement

...

3.4. Authority
SUNET CERT operates under the auspices of the SUNET members and the supervision of the SUNET management.
Should circumstances warrant it, the SUNET CERT will appeal to the NORDUNET SUNET NOC excert its authority.

...

4.1. Types of Incidents and Level of Support
All incidents are considered normal priorityIncidents are classified as Critical (response time 8 hours), Major (response time next business day, Minor (response time 3 business day) or Low (response time  5 business day).

4.2. Co-operation, Interaction, and Disclosure of Information
All incoming information is handled confidentially by SUNET CERT and in accordance with Swedish Law.
When reporting an incident of sensitive nature, please state so explicitly by using an appropriate label in the Subject field (for example, SENSITIVE, EMERGENCY, etc.) and if possible, use encryption as well.
SUNET CERT supports the Information Sharing Traffic Light Protocol (ISTLP; see https://www.trusted-introducer.org/links/ISTLP-v1.1-approved.pdf); information that arrives with the tags WHITE, GREEN, AMBER, or RED will be handled appropriately.

...

  • IT security incident analysis (triage, information collection and coordination.)
  • Vulnerability detection and scanning.
  • Awareness building through reach out, workshops and community gatherings.Crisis exercises

...

6. INCIDENT REPORTING FORMS

Not available; please report using e-mail. When reporting an incident of sensitive nature use encrypted e-mail.

...

7. DISCLAIMERS

None.

...

Revision

1.3.4 2024-10-28 Updated link reference and phone info 2.11. Removed Crisis exercise as its part of Security center /DH

1.3.3 2024-05-24 Updated 3.4 /MT

1.3.2 2024-05-20 Revision and spelling /DH

1.3.1 2024-04-26 Updated: 2.11 and 4.1 /MT

1.3.0 2023-05-08: Deletede facsimile number. 3.1 Mission updated.  5.1 Servicec Services updated. /MT