Effectiveness of Proactive CSIRT Services

Many authors have suggested that Computer Security Incident Response Teams (CSIRTs) need to deliver more proactive services to stay effective, but there are hardly any studies investigating to what extent existing proactive services are indeed effective or how to make them more effective. We view the proactive services as cross-organisational learning processes, where CSIRTs facilitate learning between information providers (i. e. vendors of commercial off-the-shelf- software) and users of these information (i. e. users of such products) in the CSIRT constituency. Cross-organisational learning processes carry the promise of avoiding incidents and the hope of saving considerable resources, but only if the constituents are enabled to learn from the experiences of the past and from others effectively.

Wiik, Johannes; Gonzalez, Jose J.; Kossakowski, Klaus-Peter (2006): Effectiveness of Proactive CSIRT Services. IT-Incident Management & IT-Forensics - IMF 2006. Bonn: Gesellschaft für Informatik e. V.. PISSN: 1617-5468. ISBN: 978-3-88579-191-1. pp. 67-81. Regular Research Papers. Stuttgart. October, 18th - 19th, 2006

Sammlungen

P097 - IMF 2006 - IT-Incident Management & IT-Forensics

Komplettanzeige

Effectiveness of Proactive CSIRT Services

Volltext URI

Dokumententyp

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen