This is a template to help people fill in useful things for their inventory.
This is for Level 1 information, information which is already public or you are happy to make public, in order that others can easily find it.
You may put what you like here.
This is where you should include a description of what your NREN, project or institute does.
You may include any text/explanations you wish. Please don't include anything here that may be of use to an attacker.
Note that now the WHITE (level 1) and AMBER (level 2 )templates are the same, people choose what they share publicly or privately
You may include any text/explanations you wish.
|Name of NREN/Project/Institute||Example Project Institute Homepage|
|General Overview||Public link for this project or NREN|
|Security Emergency contact|
How to contact in an emergency
E.g. E-mail(s) or link to instructions
|How to report a security incident||Incident reporting e-mail(s) preferably, and/or links to instructions|
Link to relevant public document if you have one,
or who to contact
|Security officer||individual e-mail if you wish, some make public, some don't|
|Data Protection Officer (GDPR)|
|Who is in charge of the NREN/Project||Could include deputies|
|ISM||Link to ISM for this project, or person to contact if not public|
|Policy Documents (incl. AUP)||Link to policy docs for this project, or person to contact if not public|
|Software Vulnerability handling||Link to procedure/web, or who to contact|
|Security Monitoring||Link to security monitoring information, if present, or who to contact|
|Other incident Prevention||Any other incident prevention work|
|Incident handling||Incident handling procedure - if public, if not who to contact|
|Any other contact information||As you wish|
|Compliance with standards||Standards complied with, including|
|ipv4/ipv6 prefixes||(more suitable for NRENs or sites than very dist. infrastructures)|
|Links to blogs, reports, anything you wish.|
|Individual members||(as you wish)|
|Projects people work on||(if you wish)|