Skip to main content

Concluded WG G & R for Security Incident Processing (grip)

Note: The data for concluded WGs is occasionally incorrect.

WG Name G & R for Security Incident Processing
Acronym grip
Area Operations and Management Area (ops)
State Concluded
Charter charter-ietf-grip-01 Approved
Document dependencies
Additional resources Additional GRIP Page
Personnel Chairs Barbara Y. Fraser, Klaus-Peter Kossakowski
Mailing list Address
To subscribe

Final Charter for Working Group

The full name of this working group is Guidelines and Recommendations
for Security Incident Processing.

This working group is co-chartered by the Security Area.

The purpose of the GRIP Working Group is to provide guidelines and
recommendations to facilitate the consistent handling of security
incidents in the Internet community. Guidelines will address technology
vendors, network service providers and response teams in their roles
assisting organizations in resolving security incidents. These
relationships are functional and can exist within and across
organizational boundaries.

The working group will produce a set of documents:

1) Guidelines for security incident response teams (IRT).

2) Guidelines for internet service providers (ISP) consisting of three
documents covering the following topics:

  • Expectations on how ISPs will coordinate with each other and IRTs
    in incident handling

  • Consumer Checklist on ISPs

  • Site Security Handbook (SSH) Addendum for ISPs

3) Guidelines for vendors (technology producers).


Date Milestone Associated documents
Oct 1999 Submit guidelines for technology providers to IESG for consideration as a BCP RFC
Sep 1999 Submit final verion of guidelines for technology providers Internet-Draft
Jul 1999 Meet at IETF in Oslo
Jul 1999 Submit revision to guidelines for technology providers as an I-D
Jun 1999 Submit ISP documents to IESG for consideration as a BCP RFC
May 1999 Submit Revisions to three major I-Ds
Mar 1999 Submit Consumer Checklist on ISPs as an Internet-Draft
Mar 1999 Submit Internet-Draft on security guidelines for technology providers
Mar 1999 Submit Expectations for ISPs as an Internet-Draft
Mar 1999 Submit Roadmap document as an Internet-Draft