Computer emergency response team

From WikiMD's Wellness Encyclopedia

Forum of Incident Response and Security Teams logo

A Computer Emergency Response Team (CERT) is an expert group that handles computer security incidents. The primary mission of a CERT is to respond to security breaches, viruses, and other potentially catastrophic incidents in both private and public sectors. CERTs are also responsible for disseminating information about potential threats and vulnerabilities to help organizations protect their systems.

History[edit | edit source]

The concept of CERTs originated in the late 1980s. The first CERT was established at Carnegie Mellon University in response to the Morris worm incident in 1988. This incident highlighted the need for a dedicated team to handle and respond to computer security incidents.

Functions[edit | edit source]

CERTs perform a variety of functions, including:

  • **Incident Response**: Handling and mitigating the impact of security incidents.
  • **Vulnerability Analysis**: Identifying and analyzing vulnerabilities in software and hardware.
  • **Security Awareness and Training**: Educating organizations and individuals about security best practices.
  • **Coordination and Collaboration**: Working with other CERTs, government agencies, and private sector organizations to improve overall cybersecurity.

Types of CERTs[edit | edit source]

There are several types of CERTs, including:

  • **National CERTs**: These teams operate at the national level and are often government-funded. Examples include US-CERT and CERT-UK.
  • **Organizational CERTs**: These teams are specific to an organization, such as a corporation or university.
  • **Sectoral CERTs**: These teams focus on specific sectors, such as finance, healthcare, or energy.

Related Concepts[edit | edit source]

See Also[edit | edit source]

Template:Cybersec-stub

Contributors: Prab R. Tumpati, MD