Search| Browse| Contribute
Library| Blogs| Jobs| Podcasts| Wikis| Feeds
Page Location:
Home > Browse > Contributed by Organizations or Campuses; Articles, Papers, and Reports; ... (4 records)
Alternate ViewsRSS

Contributed by Organizations or Campuses; Articles, Papers, and Reports; Cybersecurity; and Incident Handling and Response

Recent library resources tagged with Contributed by Organizations or Campuses; Articles, Papers, and Reports; Cybersecurity; and Incident Handling and Response.

Major breach of UCLA's computer files
Added by the EDUCAUSE Librarian
Title:Major breach of UCLA's computer files (ID: CSD4722)
Author(s):Rebecca Trounson (Los Angeles Times)
Origin:Contributed by Organizations or Campuses (2006)
Type:Articles, Papers, and Reports
Abstract:"Personal information on 800,000 students, alumni and others is exposed. Attacks lasted a year, the school says."
View this resource:
http://www.latimes.com/news/local/la-me-ucla12dec12,0,7111141.story[Off site]
| | | |
Login to post comments  Send to a Friend  2042 reads

Defining Incident Management Processes for CSIRTs: A Work in Progress
Added by the EDUCAUSE Librarian
Title:Defining Incident Management Processes for CSIRTs: A Work in Progress (ID: CSD3849)
Author(s):Christopher Alberts (Carnegie Mellon University), Georgia Killcrece (Carnegie Mellon University), Robin Ruefle (Carnegie Mellon University), and Mark Zajicek (Carnegie Mellon University)
Source:Carnegie Mellon Software Engineering Institute
Origin:Contributed by Organizations or Campuses (2003)
Type:Articles, Papers, and Reports
Abstract:This report presents a prototype best practice model for performing incident management processes and functions. It defines the model through five high-level incident management processes: Prepare/Sustain/Improve, Protect Infrastructure, Detect Events, Triage Events, and Respond. Workflow diagrams and descriptions are provided for each of these processes.
View this resource:
http://www.sei.cmu.edu/pub/documents/04.reports/pdf/04tr015.pdf[Off site]
| | |
Login to post comments  Send to a Friend  3419 reads

Handbook for Computer Security Incident Response Teams (CSIRTs), 2nd edition
Added by the EDUCAUSE Librarian
Title:Handbook for Computer Security Incident Response Teams (CSIRTs), 2nd edition (ID: CSD3847)
Author(s):Georgia Killcrece (Carnegie Mellon University), Robin Ruefle (Carnegie Mellon University), and Mark Zajicek (Carnegie Mellon University)
Source:Carnegie Mellon Software Engineering Institute
Origin:Contributed by Organizations or Campuses (2003)
Type:Articles, Papers, and Reports
Abstract:This document provides guidance on forming and operating a computer security incident response team (CSIRT). In particular, it helps an organization to define and document the nature and scope of a computer security incident handling service, which is the core service of a CSIRT. The document explains the functions that make up the service; how those functions interrelate; and the tools, procedures, and roles necessary to implement the service. This document also describes how CSIRTs interact with other organizations and how to handle sensitive information. In addition, operational and technical issues are covered, such as equipment, security, and staffing considerations.
View this resource:
http://www.sei.cmu.edu/pub/documents/03.reports/pdf/03hb002.pdf[Off site]
| | |
Login to post comments  Send to a Friend  3507 reads

State of the Practice of Computer Security Incident Response Teams (CSIRTs)
Added by the EDUCAUSE Librarian
Title:State of the Practice of Computer Security Incident Response Teams (CSIRTs) (ID: CSD3848)
Author(s):Georgia Killcrece (Carnegie Mellon University), Robin Ruefle (Carnegie Mellon University), and Mark Zajicek (Carnegie Mellon University)
Source:Carnegie Mellon Software Engineering Institute
Origin:Contributed by Organizations or Campuses (2003)
Type:Articles, Papers, and Reports
Abstract:Keeping organizational information assets secure in today's interconnected computing environment is a challenge that becomes more difficult with each new "e" product and each new intruder tool. There is no one solution for securing information assets; instead a multi-layered security strategy is required. One of the layers that many organizations are including in their strategy today is a computer security incident response team, or CSIRT. This report provides an objective study of the state of the practice of incident response, based on information about how CSIRTs around the world are operating. It covers CSIRT services, projects, processes, structures, and literature, as well as training, legal, and operational issues. The report can serve as a resource both to new teams that are setting up their operations and to existing CSIRTs that are interested in benchmarking their operations.
View this resource:
http://www.cert.org/archive/pdf/03tr001.pdf[Off site]
| | |
Login to post comments  Send to a Friend  3154 reads