Computer Emergency Response Team - Industrie Services et Tertiaire The CERT for France Industry, Services and Tertiary sector
Members area version française [version française]
HOME PRESENTATION PUBLICATIONS SUBSCRIPTION CONTACTS FAQ SEARCH
PRESENTATION
Cert-IST history
Cert-IST Association
Cert-IST services offer
Cooperation
Sponsors
Vulnerability disclosure policy
Printable version
Cert-IST services offer

The Cert-IST membership is based on a fee related to the requested services


Offer presentation

  • Personalised dissemination of security avisories and alerts under different formats. Results from the analysis and the cross-checking of information gathered daily from many sources and from the qualification using objective criteria. Each year, the Cert-IST releases about 600 advisories, continiously updated (more than 1800 updates all along the year), and around ten alerts.
  • Release of a monthly security bulletin. Records the vulnerabilities that have been released or not and deals with actuality topics through specific studies.
  • Release of a weekly security bulletin. Records the vulnerability evolutions.
  • Release of a daily press review bulletin which lists the most interesting articles published on the web.
  • Release of security advisories for SCADA systems.
  • Access to the Cert-IST vulnerability database, feeded since 1997, which covers hardware and software components the most commonly used in information systems. The Cert-IST stores vulnerabilities concerning more than 1000 products and 8200 associated versions. This database enables multi-criteria search.
  • Access to a hotline in case of demand of precision on a released advisory.
  • Access to an incident handling service with intervention on site if necessary. Establishment of a trusted relationship that allows to handle security problems with all the privacy requirements. The service enables to find an explanation to reported problems (abnormal behavior, loss of availability or confidentiality, etc...), to identify their causes (voluntary or unvoluntary) and the origin. It gives various recommendations, either corrective to palliate the incident, or general to improve the general security level.
  • Skills transfer, and on-demand training, to assist in the acquisition of expertise, for example in the field of incident investigation or log analysi.

Incident handling coordination

  • The Cert-IST coordinates with the other CERT nationally and internationally for security incident response, whenever a member of its constituency (France Industry, Services and Tertiary sector) gets involved.
Copyright © 1999-2012 Cert-IST | Legal Notice | Sitemap