G & R for Security Incident Processing (grip) Concluded WG
Note: The data for concluded WGs is occasionally incorrect.
|WG||Name||G & R for Security Incident Processing|
|Area||Operations and Management Area (ops)|
|Dependencies||Document dependency graph (SVG)|
Charter for Working Group
The full name of this working group is Guidelines and Recommendations
for Security Incident Processing.
This working group is co-chartered by the Security Area.
The purpose of the GRIP Working Group is to provide guidelines and
recommendations to facilitate the consistent handling of security
incidents in the Internet community. Guidelines will address technology
vendors, network service providers and response teams in their roles
assisting organizations in resolving security incidents. These
relationships are functional and can exist within and across
The working group will produce a set of documents:
1) Guidelines for security incident response teams (IRT).
2) Guidelines for internet service providers (ISP) consisting of three
documents covering the following topics:
* Expectations on how ISPs will coordinate with each other and IRTs
in incident handling
* Consumer Checklist on ISPs
* Site Security Handbook (SSH) Addendum for ISPs
3) Guidelines for vendors (technology producers).
|Oct 1999||Submit guidelines for technology providers to IESG for consideration as a BCP RFC|
|Sep 1999||Submit final verion of guidelines for technology providers Internet-Draft|
|Jul 1999||Meet at IETF in Oslo|
|Jul 1999||Submit revision to guidelines for technology providers as an I-D|
|Jun 1999||Submit ISP documents to IESG for consideration as a BCP RFC|
|May 1999||Submit Revisions to three major I-Ds|
|Mar 1999||Submit Consumer Checklist on ISPs as an Internet-Draft|
|Mar 1999||Submit Internet-Draft on security guidelines for technology providers|
|Mar 1999||Submit Expectations for ISPs as an Internet-Draft|
|Mar 1999||Submit Roadmap document as an Internet-Draft|