Incident responses refer to crisis management after incidents occur in information systems. Incidents in information systems refer to entire cases and incidents related to computer security in computers, where unauthorized parties utilize computers. Normally, we pay attention to these incidents and take measures to prevent heavy damage; however, they are not perfect. Incidents may occur, not only those simply caused by system problems, but also those caused by newly detected vulnerabilities in software. If such incidents occur, we carry out the “follow-up” handling to minimize the spread of the damage. This “follow-up” handling is called an incident response.
Policy for treating incident responses
JPCERT/CC asks for your cooperation regarding incidents. Please fill in the necessary matters in the incident report and e-mail it to info@jpcert.or.jp
(Requests JPCERT/CC can not accept)
Requests JPCERT/CC can not accept are as follows:
- - Monitoring or consulting for individual sites
- - Consulting about individual applications
- - Non-technical assistance (including arbitration of disputes, enforcement of handling, investigation, identifying offenders, confiscation of evidence, legal assistance (claiming for damages and losses), etc.)
International affiliations
Incidents all over the world are handled through affiliations with CSIRTs that are members of FIRST or APCERT.
Incident responses and CSIRTs
Since incidents occur in the Internet may spread rapidly, it is essential to share information among CSIRTs (Computer Security Incident Response Team) for each organization to perform accurate responses to incidents. For instance, by sharing information such as incident causes and counter-measures, we can minimize damage and prevent recurrences. JPCERT/CC, as the “CSIRT of CSIRTs”, coordinating affiliations among CSIRTs, promotes the distribution of incident information.
Phishing
The following is the FAQ regarding the work of JPCERT/CC in handling phishing.
■Update history
- 2006-01-23
- Modification of some descriptions accompanying the web design update
- 2005-06-24
- Publication of the first issue