What's IRIS-CERT?


Who can use IRIS-CERT's services?

IRIS-CERT acknowledges three kinds of users:
  1. Institutions affiliated to RedIRIS.

    These are universities and research institutions. They have access to every service (by definition). They may participate in service coordination, through our working groups.

  2. Other national and international security teams.

    IRIS-CERT acts as point of contact for other incident response teams. Scope of coordination is Spain (.es domain). Scope of contact and representation is worldwide.

    IRIS-CERT is full member of FIRST , has contributed to the EuroCERT project and currently t is contributing in the TERENA Task Force,TF-CSIRT (CSIRT Coordination for Europe), to encourage and support the cooperation between CSIRTs in Europe.

    IRIS-CERT is level 2 team in the TENERA Trusted Introducer Service since 23th March 2001.

    IRIS-CERT can also act as liaison with the Spanish law enforcement agencies (Police and Civil Guard), although our role in any legal process will be limited to technical assessment.

  3. Internet users and providers in Spain.

    RedIRIS affiliates aside, the services provided to the general public are limited to:

    • Use of IRIS-CERT's public resources (Web server, FTP, mailing lists).
    • Incident response. This service is offered to everybody, according to the following criteria and priorities.
A formal description of the IRIS-CERT services according to the RFC 2350 can be found here.

How much does it cost?

Nothing, if you are eligible for this service (see the previous question).

The fact that users don't have to pay doesn't mean it's free, though. The National Plan for R+D funds a network for researchers, including a security service which guarantees its integrity. External security coordination is a necessary task implied by the above.

What can't IRIS-CERT do for me?

  • Everyone:

    This service is limited by material and human availability. When the demand exceeds our capability, we'll attend incidents according to the following priority definitions.

  • Non RedIRIS members:

    We aim to train Internet users in the cooperation spirit advocated by RFC1281, of which we extract the following paragraph:

    The Internet is a cooperative venture. The culture and practice in the Internet is to render assistance in security matters to other sites and networks. We believe that this attitude benefits us all.

    However, this and the fact that we don't charge anything shouldn't be misunderstood as being a free advisory service for everyone. We don't commit to answering general queries not related to our service (ie 'why won't my computer boot?'), although we may do so depending on the current workload and our estimation of their importance.

Helping you to gather incident information

If you believe you are involved in an incident, we would appreciate your completing this form. This helps us to avoid delays in the incident handle.
Please, submit this form to cert@rediris.es. If you are unable to send email, fax this form to: +34 91 556 8864
RedIRIS keeps any information specific to your site confidential unless we receive your permission to release that information.

Where can I find out more?

You can contact the team members at cert@rediris.es.
Further contact information is available here.
We recommend PGP for private communications.