From a8dfd457509e4d62d5904bd4f3ff6a590f7d0f59 Mon Sep 17 00:00:00 2001 From: nckroy Date: Thu, 26 Sep 2019 15:40:11 -0600 Subject: [PATCH] v1.5 --- docs/index.html | 15 +++++++++++---- main.adoc | 9 +++++---- ...c-security-incident-handling-framework.pdf | Bin 217350 -> 220278 bytes 3 files changed, 16 insertions(+), 8 deletions(-) diff --git a/docs/index.html b/docs/index.html index 9fb38c8..6f360c0 100644 --- a/docs/index.html +++ b/docs/index.html @@ -445,8 +445,8 @@

Inte

Prepared by: Nicholas Roy, Director of Technology and Strategy, InCommon/Internet2 Trust and Identity Services
-Version: 1.4
-Date: September 5, 2019

+Version: 1.5
+Date: September 26, 2019

Document Title: Internet2 Trust and Identity Services Security Incident Handling Framework
@@ -547,6 +547,13 @@

Change Log

1.4

Nicholas Roy

+ +

Draft

+

Added language about who can declare an incident

+

September 26, 2019

+

1.5

+

Nicholas Roy

+
@@ -671,7 +678,7 @@

Roles

  1. -

    CSIRT Executive Sponsor, typically the Internet2 Vice President for Trust and Identity Services

    +

    CSIRT Executive Sponsor, typically the Internet2 Vice President for Trust and Identity Services. Only this role can declare an incident, in consultation with a lead named by this role.

  2. Incident Lead, typically an Internet2 Security Lead

    @@ -1045,7 +1052,7 @@

    Appendix B: Acknowledgements

diff --git a/main.adoc b/main.adoc index 25604fd..93b99fa 100644 --- a/main.adoc +++ b/main.adoc @@ -3,8 +3,8 @@ == Internet2 Trust and Identity Services Incident Handling Framework *Prepared by:* Nicholas Roy, Director of Technology and Strategy, InCommon/Internet2 Trust and Identity Services + -*Version:* 1.4 + -*Date:* September 5, 2019 +*Version:* 1.5 + +*Date:* September 26, 2019 @@ -35,7 +35,8 @@ |Publication|Revisions from Internet2 General Counsel|January 30, 2017|1.1|Nicholas Roy |Publication|Revisions to fix typos and add document repository information|February 27, 2018|1.2|Nicholas Roy |Draft|Support other InCommon services|July 15, 2019|1.3|Nicholas Roy -|Draft|Changed from InCommon to Internet2 Trust and Identity Services|September 5, 2019|1.4|Nicholas Roy| +|Draft|Changed from InCommon to Internet2 Trust and Identity Services|September 5, 2019|1.4|Nicholas Roy +|Draft|Added language about who can declare an incident|September 26, 2019|1.5|Nicholas Roy| |=== <<< @@ -106,7 +107,7 @@ Upon receipt of information about a possible security threat to an Internet2 Tru Roles 1-4 make up the standing CSIRT, with all roles under 5 filled on an as-needed basis. -. CSIRT Executive Sponsor, typically the Internet2 Vice President for Trust and Identity Services +. CSIRT Executive Sponsor, typically the Internet2 Vice President for Trust and Identity Services. Only this role can declare an incident, in consultation with a lead named by this role. . Incident Lead, typically an Internet2 Security Lead . Incident Communications Representative, typically an Internet2 marketing and communication director . REN-ISAC liaison diff --git a/pdf/inc-security-incident-handling-framework.pdf b/pdf/inc-security-incident-handling-framework.pdf index 18fa10c48abdcddc4f2a10a996c815a0bd69b282..0ba02f0561abbfe7990b2180cf579c54c41fbd9f 100644 GIT binary patch delta 4600 zcmZu!dvF!i8J};ndjl7t!Q8!h@VWuQGi>&p-92Xy&qfPsr^Nt~u|){fLMtuB*iLPM z=_P&G3R;6l{jeRawc5_u`p9J3YkgqwkB%=|)Yh4f&d5-lGAbb!#3!ZS?oDoz-QIuh ze&3$+J$~Qs`_9>$?w@$>@rgZW$8o^|Pce4j(?b00yDsmW4Nn`m_Pa2(?|c=rAkYW0 z9r}&&S$*sH530B)^u66p`dDsx--+zSmzy#S8Mf6JVIN=DTCMxn=QCa?93k~>Q^Ju) zuJ>MDJz6}rZj3miW0W{kx39|J@_Iw|-TUQhyt{g#88;0;R)6g$OLJxGg&kSuhmKo_ zMLe+1ScLZtKn70@z@#ct;udMN>h`8gZ6F-iAG6-qHS?BW?HOp$pZ(l=J#f=ycEu|9 zr6WbztX{+T#eQmkWZKa^%d7L1ccXUsTzBtSjNPZndi&PKiPs7ywhAc&`j@)R%UAh4 zz(HozH!#7)HW^5tyHbi!Y~!x*qUE~nXE}5Rp|RE%0jbD_KDr=N`+tHjXV%|2Dzj00 zDYKVn`+8@0b(Gx{y(X8NN_^ngE-!R!&#vsqX0w-cWO?9501hQtm+`pgdQ7jmVzDN} zTJ0Ydm`{Q6umW~Vv|=Q#5!dCoHg6df*Ql*=TuY*u8g>6JVl2M=JgD29j6QtJC}#mV zBO;6thE|L?8?hHVyQ|r##+7HGCgv=8=$aFIXwXMKzYAMxVO8JmpHEw8gl=J~U5X`K)EiLdT8z_s0jYwFWNI?^yG&r^DEaM<0jjeXCA9RAq2Jyo>9{j%Vs7EQCm6k?r9={96q#b; ztJw7wW9q~)mhk!o(4u>e1Q{v06DsWWV7u-=nYGGd*AZgw$&>w7z#PV~sR3-fUcyzn z?rpoQ>tk;-FulO>@Bjl_?|x^e$vh`ODA3wR6s(WTRa7|~?1F0j<45cpY`j;aa_O;0;R#j#4DqxPLWm-F14?kZMh) zPMwlf=9FofK|6p=Ou*D$G{BZM#gnMr^a{AE^51KBGqjIQQ zKI*JUc6q_6kDjsokbsGTtJBYYym3Ud^@>j(wuJ96rQiGHJLM;wd>gGRzB@<%?$bLg zpF4gzu&d5@4oUC*($;@H-)nN0Ac_M!_+JWaSi-e`2d1xiqD}WykEh=8@9s_n8GC+4aA$rH1H6^bKR)Zm2yf6du zrMpeYgW>!53?Yuk#u*mAWWgf_6L_qNH11-^ln!QKI#{mj(DC!@RYv~yy_4|GYCto> zzZ`h~E>mwfz82pa2XmS7hf4y zIyV7kfW?#}6tX6;ORW=OJbCvV#q@z!>#$=Iyl#fvVXh`x9p`K1gv-DI0%m-|k8d+|HM!?Ib(XiQg1579_n+g-a;36tw9d4Nh zNAUa%8XVhCuE%?(lM#~YOD{|Z4!E$14CJZZz>r>4!#Z5q1b0WRK-H@Z82sW)+V|ir zsE?&h&Y3p1t03Vo7cJ|JLW{BooT(^9we?C+bQE50Zd}#sfF=*iRwoth?FN9~!&?mIo zUL0fRd5|{TS9fE`Ur@!l}sPrLDOgnd=r-~BWszZ z^al4Yr;ysWKy~SwWzY)v^a={;f#uLZT^_^?D804=K96NX2F=3M1ejuQm~RP zl`&m(QvnL5++-r8^M_F=4%eNOVG>s9u>@SMD?PeSC4wfMNWw2Yk>X4kxFUg8(G3Hi zCnF?X%3w&B`J@xl$z4B-%h zr1MlF7}EKEB01(ssVa#S%WX$RXI_FdRN=5vr(q|7;K}T$Mm$Wk80mya>tvGXtSAD- zQVRu3Le0pWn+#Bp=Sn6+iI7et2uyp0pYkDHm-rUrKMX&8Djl zA(cw)4Lur%V@k~E<6souit*GVWtgg+P&|!{@{-ex2^GkcVc31g^-0Yk0Sgl@Q2(@j#d_WM9t)8pU&NcPEpK>7GsLq zIJHiM^wnA^NnC$Ab7Ybr^!4VkM2$%oq}PQi$%W`BNhZP>RcVytC<4;espLfBG)3vY V@u&8xl@sWg3bW14E3aIY{U5BXgoXeB delta 3738 zcmZWseT-Dq70-F|W?^SP*kyNSXZetUUB21b_wIf7-FuhFM{)UzqFX^Q7=&8=!&0Tz z#!@xIQfduI1KxCxCJnokCMp5TcG5mIf@>vhsj<-n6I!fFY}!9WT0lOmRC{J-cVO@A zADeg1J@=m9`JHoqo4x!>-BZ7;+w=KYPy0LwJa6x{%WJC$^0+YWoq{&^Yf3tG|LPOR-3D5KQX71bNV(q_v51Da8v%- za|dHB(oZZ{kof+ikKDiMyNT~55*=PvWLDp2&czm+h7ZQZq~@k4-(o(zxX~$n;(xX~ zu37*2n;>!HN+*r4Pk_73u1m?1-GYmDI92&$m(t*hFw4#0vuShT@@9tzxYu=3nCXVK z1wb)b@}zNGuQS86TzxnueTI$Wofb22^}!J%ReaAJyEM*t{f%bD7rk)`%PP}*qS<`% z#Rqj-W<3^WR)0Iuxs>C%yJ4C+_uma}!EJgDrOX3gUT~x^=U+>iE!Q@eKGXTj*CrD_ zoecm*I?>jz_@FK|zj)AI8e+879$S3f*2=9H9!7mbM*Tp#J~|D_6Vm1KTN@QMvUlNEie8JsW)E|?*ADth)Ipa@o>cT%2h0V0zk?Ec zorT2dPG~i{w*i0P!AXaQxTP7=c%Kh14jU1^=7!}svxTi2$Iyh zyUd>7Cd!@^_Ah{KZb)N@gN!;&L%a_6EQF@Auh}$w=0stv zA|i3=H(-05d4(#A!%}RLqIz#|Mh`5334pgPq4?)-frlN*aBn;D@WU%>@Ud>1=aM6Z z)X=8rciqqixT_n|egA@Xs!ia^Wsr0kQHqNlqVln2pa3^4qa8l690I^!FDGd4CYOSYhu~{6 zCXk*lZj8$jMFBl%lNLzQ{2K#{aX~QZa>=J`&_W5%1|yWJU_mJD=WMEl_Owlx&@8kQ z3(dWX#F`6kftDn)b`I%jJ{*@Tj|n-Y&4Tp3iXKzfxm}%NfwtLFOmG{tVgzRtK;oaA zBud3mErZd5OFM}c(zlr*pRlXbLfQ2DKGT8qo=;_HnH!y$oB^%dC@|y`zC|mAsn8lO z3S;)>_=4%-NiPq&FE}d~mmA(vKV$`+9Gy61G?|q?X#)(IRuyrame#(@xjhRxKjfq^ z6@g)3tr*40(W~QmK1JEot2Af>Uvh#;_ri{e6Uw