The Development of Cyber Security Warning, Advice and Report Points
The threat to electronic information systems increasingly has origins in organised crime or nation-state sponsored or supported activity. Any successful cyber security programme relies upon the sharing of information. How this is achieved is a question that does not currently have an answer. This paper defines and describes cyber security Warning, Advice and Reporting Points (WARPs) as a potential solution. WARPs are most commonly found in the UK and have their origin in UK Critical National Infrastructure. This paper identifies the origins of response to computer security incidents. It then discusses international and UK computer incident response before defining and describing WARP. In doing so it contributes the experience gained at the University of Wolverhampton (who began operating WARPs in 2007). This paper furthermore seeks to examine how the original aims for WARP have developed and progressed since the initiation of the WARP programme.
Keywordssecurity information information sharing Warning Advice and Reporting Points
Unable to display preview. Download preview PDF.
- 1.CERT, National Computer Security Incident Response Teams, http://www.cert.org/csirts/national/contact.html
- 2.CERT, CSIRT FAQ, http://www.cert.org/csirts/csirt_faq.html#1
- 3.FIRST, FIRST History, http://www.first.org/about/history
- 4.CPNI, “WARPs Introduction”, http://www.warp.gov.uk/Index/indexintroduction.htm
- 5.CPNI, “WARPs explained”, http://www.warp.gov.uk/Index/indexwarpexplained.htm
- 6.Burnett, P.: Discussion on the development of WARPs (telephone). Personal Communication (February 01, 2012)Google Scholar
- 7.Information Assurance Advisory Council. Sharing is Protecting. A review of Information Sharing, Cambridge, UK (2003), http://www.warp.gov.uk/downloads/IAAC%20NISCC%20Sharing%20is%20Protecting%20v21.pdf
- 8.JANET, Web Archive (2012), http://www.webarchive.ja.net/services/publications/glossary/glossaryc.html
- 9.Mitre Corporation. Common Vulnerabilities and Exposures, http://cve.mitre.org/
- 10.Ellefsen, I., Von Solms, S.: The Community-oriented Computer Security, Advisory and Warning Team. IST-Africa, 1–8 (2010)Google Scholar
- 11.Proctor, T.: The Development of Warning, Advice, and Reporting Points (WARPs) in UK National Infrastructure. In: Proceedings: 6rd International Conference on Critical Information Infrastructure Security, Lucerne, Switzerland, September 8-9 (2011)Google Scholar