ABUH & INCIDENT HANDLING SIG GROUP RE-EXAMINES AH & INCIDENT HANDLING
SIG Members so far (in no particular order): – CERT-EU – CERT.be – CERT.at – CERT.ee – CERT.fi – CERT.is Focus: make AH useful for us Add features (eventDB, stats, statistic reports, Human Input & checking, contactDB, UI,...) to AH Specify/standardize (as in RFC) our ideas So far, architecture is very clear for us, also for you?
Architecture 7 AH manual Inputconfig biz logic Web gui scripts web basic data CRM/contacts Web IF malwareIMG contactDB ticket system email Archive DB automatic Input eventDB REST reporting
What do we need? Your input Participate in the SIG workshop: Wednesday, 9:30 @ Room FCCN2