1 / 15

WARPs (Warning, Advice and Reporting Points) Sharing is Protecting

WARPs (Warning, Advice and Reporting Points) Sharing is Protecting. Information Sharing. Primary goal – Sharing of Incident Reports Timely, relevant, validated Supporting Activities Effective Delivery of IT Security Alerts, Advisories, News Exchanging ‘Best’ Practice, Advice, Solutions.

phillip-whitfield
Download Presentation

WARPs (Warning, Advice and Reporting Points) Sharing is Protecting

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. WARPs(Warning, Advice and Reporting Points)Sharing is Protecting

  2. Information Sharing • Primary goal – • Sharing of Incident Reports • Timely, relevant, validated • Supporting Activities • Effective Delivery of IT Security Alerts, Advisories, News • Exchanging ‘Best’ Practice, Advice, Solutions

  3. WARP Member Benefits • Better Protection of own systems • Filtering service for Warnings & Advisories • saves resources • improves effectiveness • Network for Advice, links, contacts • Forum for Sharing of Best Practice • Peer comparisons (rank, timing, resources) • Highly Relevant Early Warnings • Improved Awareness • Reduced threat to everyone else

  4. Information Security infrastructureA.4.1 Information security coordination specialist information security advice Cooperation between organisations Responding to Security Incidents & MalfunctionsA.6.3 Reporting security incidents Reporting security weaknesses Reporting software malfunctions Learning from incidents Operational Procedures ResponsibilitiesA.8.1 Protection against Malicious SoftwareA.8.3 Incident management procedures Controls against malicious software User TrainingA.6.2 Information security education & training BS 7799 AND WARP

  5. London Borough B London Borough C etc. London Borough A Secure links Secure links Authorised users in each Borough Supported by SOCITM, OeE & NISCC Future ‘LA’ WARPs 33 London Boroughs LondonConnects WARP Secure system with fallback contingency CERTs NISCC 1 Admin. FTE Bugtraq Secure link 1 Technical FTE CSIRTs UNIRAS Sans Other WARPs The WARP Register

  6. NLAWARP Project

  7. Building a WARP: a 3-phase process • Add value, • save resources, improve effectiveness of advisories & warnings • Develop community, • build cooperation and TRUST, through sharing best practice & advice • Encourage Sharing • of (anonymised) incident reports, problems, fixes

  8. The WARP TOOLBOX http://www.warp.gov.uk

  9. Filtered Warnings Application

  10. FWA Categories

  11. Setting up a WARP - the essentials • The WARP Toolbox – www.warp.gov.uk • A community (can be virtual) • A ‘champion’ • The right ethos • NfP, cooperative, collaborative, enthusiastic • Registration • [Filtered Warning Software]

  12. Developments • FWA use by Uniras • Common Advisory format • Netherlands, Australia, USA • ENISA • Telcos • MSP • Police • SMEs

  13. The future • WARPs will become endemic across the UK, and beyond • Self-replicating • Free-standing • Co-operating • Improving the security of • their members • the CNI • Everyone else The WARPs Vision

  14. A final thought “It is not from ourselves that we learn to be better than we are” ~Wendell Berry

  15. Discussion • In your group: • Identify any factor that might bind you all as a community • If necessary, redefine that factor to be one that has a common reliance on IT • (pretend, if you need to) • Identify one or benefits to your new community of creating or belonging to a WARP • Identify one or more obstacles to forming or joining a WARP

More Related