...

Public Keys and Other Encryption Information

The

...

eduGAIN-CSIRT

...

has

...

a

...

PGP

...

key,

...

whose

...

KeyID

...

is

...

CE43BCB8

...

and

...

whose

...

fingerprint

...

is

F9FF

...

B82B

...

9700

...

72D1

...

F753

...

25CF

...

5E3C

...

31D7

...

CE43

...

BCB8.

The

...

key

...

and

...

its

...

signatures

...

can

...

be

...

found

...

at

...

the

...

usual

...

large

...

public

...

keyservers.

Team Members

eduGAIN-CSIRT is coordinated by the eduGAIN-CSIRT security officer. Other team members along with their contact information are listed at the eduGAIN-CSIRT web page: <eduGAIN-CSIRT.WEBPAGE.ORG>: https://edugain.org/edugain-security/ , team member section needs to be added/maintained. I'm fine with having my name there>

Other Information

General information about eduGAIN security is in https://edugain.org/edugain-security/

The

...

eduGAIN-CSIRTs

...

hours

...

of

...

operation

...

are

...

generally

...

restricted

...

to

...

regular

...

business

...

hours

...

(09:00-17:00

...

(CET/CEST)

...

Monday

...

to

...

Friday

...

except

...

holidays).

Charter

Mission Statement

The eduGAIN-CSIRT provides security incident coordination for eduGAIN on the federation level and ensures that security incident resolution process does not stall. Details are laid-out in eduGAIN-CSIRTs Term of References available at <HERE A LINK TO THE TOR>

...

eduGAIN-CSIRTs major incident management function is incident coordination across eduGAIN federations.

Incident Triage

eduGAIN-CSIRT

...

will

...

support

...

the

...

eduGAIN

...

participants

...

investigating

...

whether

...

indeed

...

an

...

incident

...

occurred

...

and

...

in

...

case,

...

determining

...

the

...

extent

...

of

...

the

...

incident.

...

This

...

ranges

...

from

...

a

...

single

...

entity,

...

to

...

multiple

...

federations

...

affected.

Incident Coordination

eduGAIN is a federation of identity federations, in which different organisations operate SPs and IdPs. Usually the mandate and scope of the SPs IdPs  security teams are  limited to the home organisation. The same holds for the federations participating in eduGAIN. eduGAN-CSIRT will organise the security incident communications across affected participants and coordinate the local response activities to allow for an efficient containment and subsequently resolution of security incidents.

...

The incident resolution is ultimately the task of the organizations responsible for the end entities in eduGAIN (Service providers (SP), Identity Providers (IdP)). If possible, edugain-CSIRT will support the end entities with in coordination with the Federations  on request.

Proactive Activities

We can't do much here I'm afraid<THIS HAS A RISK OF GETTING TIME CONSUMING MORE THEN WE CAN SQUEZE IN>

Incident Reporting Forms

Incident Report temlates can be found in:  https://aarc-project.eu/wp-content/uploads/2017/02/DNA3.2-Security-Incident-Response-Procedure-v1.0.pdf

{ < THE TEMPLATES SHOULD BE EXTRACTED FROM THE PDF AND PUT ON THE WEBSITE (WITH A REFERENCE TO THE ORIGINAL DOC) } >


Disclaimers

While

...

every

...

precaution

...

will

...

be

...

taken

...

in

...

the

...

preparation

...

of

...

information,

...

notifications

...

and

...

alerts,

...

XYZ-CERT

...

assumes

...

no

...

responsibility

...

for

...

errors

...

or

...

omissions,

...

or

...

for

...

damages

...

resulting

...

from

...

the

...

use

...

of

...

the

...

information

...

contained

...

within.

...