Guidelines and Recommendations for Security Incident Processing

IETF Working Group GRIP

Last Modified: 16-Nov-99

Please note: This is only a copy of the actual charter on the archive site of the GRIP working group. Please refer to the following URLs for up to date information:

• Charter: http://www.ietf.org/html.charters/grip-charter.html

Navigation board from the IETF web server:

Chair(s):

Barbara Fraser <byf@cisco.com>
Klaus P. Kossakowski <klaus-peter@kossakowski.de>

Operations and Management Area Director(s):

Randy Bush <randy@psg.com>
Bert Wijnen <wijnen@vnet.ibm.com>

Operations and Management Area Advisor:

Randy Bush <randy@psg.com>

Mailing Lists:

General Discussion:	grip-wg@uu.net
To Subscribe:	grip-wg-request@uu.net
Archive:	http://www-ext.eng.uu.net/grip-wg/grip-wg.txt

Description of Working Group:

The full name of this working group is Guidelines and Recommendations for Security Incident Processing.

This working group is co-chartered by the Security Area.

The purpose of the GRIP Working Group is to provide guidelines and recommendations to facilitate the consistent handling of security incidents in the Internet community. Guidelines will address technology vendors, network service providers and response teams in their roles assisting organizations in resolving security incidents. These relationships are functional and can exist within and across organizational boundaries.

The working group will produce a set of documents:

1. Guidelines for security incident response teams (IRT).

2. Guidelines for internet service providers (ISP) consisting of three documents covering the following topics:
   • Expectations on how ISPs will coordinate with each other and IRTs in incident handling
   • Consumer Checklist on ISPs
   • Site Security Handbook (SSH) Addendum for ISPs

3. Guidelines for vendors (technology producers).

Goals and Milestones:

Mar 99		Submit Expectations for ISPs as an Internet-Draft
Mar 99		Submit Consumer Checklist on ISPs as an Internet-Draft
Mar 99		Submit Internet-Draft on security guidelines for technology providers
Mar 99		Submit Roadmap document as an Internet-Draft
May 99		Submit Revisions to three major I-Ds
Jun 99		Submit ISP documents to IESG for consideration as a BCP RFC
Jul 99		Submit revision to guidelines for technology providers as an I-D
Jul 99		Meet at IETF in Oslo
Sep 99		Submit final verion of guidelines for technology providers Internet-Draft
Oct 99		Submit guidelines for technology providers to IESG for consideration as a BCP RFC

Internet-Drafts:

• Security Expectations for Internet Service Provider Consumers
  (35322 bytes, also available from this server: draft-ietf-grip-user-02.txt)

• Security Expectations for Internet Service Providers
  (25209 bytes, also available from this server: draft-ietf-grip-isp-expectations-02.txt)

• Site Security Handbook Addendum for ISPs
  (66466 bytes, also available from this server: draft-ietf-grip-ssh-add-00.txt)

Request For Comments:

• Expectations for Computer Security Incident Response (RFC 2350) (86545 bytes)

Minutes of previous Meetings:

Jul 94	30th IETF	Toronto, Canada
Dec 94	31st IETF	San Jose, Calif.
Apr 95	32nd IETF	Danvers, Mass.
Jul 95	33rd IETF	Stockholm, Sweden
Dec 95	34th IETF	Dallas, Tex.
Mar 96	35th IETF	Los Angeles, Calif.
Jun 96	36th IETF	Montreal, Canada
Apr 97	38th IETF	Memphis, Tenn.
Aug 97	39th IETF	Munich, Germany
Dec 97	40th IETF	Washington, DC.
Mar 98	41st IETF	Los Angeles, Calif.
Dec 98	43rd IETF	Orlando, Fl.
Mar 99	44th IETF	Minneapolis, Minn.
Jul 99	45th IETF	Oslo, Norway
Nov 99	46th IETF	Washington, DC

Please send questions, comments, and/or suggestions regarding the GRIP working group to the open mailing list grip-wg@uu.net.

All issues regarding these web pages should be directed to klaus-peter@kossakowski.de.

These pages are hosted on http://www.kossakowski.de and are provided on an "AS IS" basis without any explicite or implicite responsibility, liability, etc. (For a more fully understanding please refer to the legal statements within the Impressum, which is only available in German.)