A Survey of Automated Information Exchange Mechanisms Among CERTs

Abstract

Nowadays innovative computer related exploits are released every single day, which makes researching about those exploits a significant task. A CERT (Computer Emergency Response Team) is an expert group that is responsible for handling cyber security incidents and for issuing feasible advisories and countermeasures for new vulnerabilities. There exist national CERTs and CERTs that belongs to large organizations; and the coordination among them to share knowledge of new threats and countermeasures is very essential for a timely emergency response. This can be done by a systematic information exchange process among different CERTs. The purpose of the present research paper is to give a review about automated information exchange mechanisms at CERTs. Furthermore, issues, challenges and various technologies used to automate information exchange are discussed.