1 / 18

National Infrastructure Security Coordination Centre

The National Infrastructure Security Coordination Centre (NISCC) is responsible for information sharing and coordinating security measures for critical infrastructure in the UK. Their objectives include increasing awareness, educating the public, gathering incident reports, and providing timely warnings. The NISCC operates through a network of Warning, Advice, and Reporting Points (WARPs) and collaborates with other organizations such as CERTs, CSIRTs, and ISACs.

ralphg
Download Presentation

National Infrastructure Security Coordination Centre

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. National Infrastructure Security Co-ordination Centre Peter Burnett Head of Information Sharing www.niscc.gov.uk

  2. Background • Late 70’s – Programming • Evaluation & Certification, CLEFs • Compusec, Infosec • CNI/CIP Programme • CERT Management • EU & Intnl Liaison

  3. Information Sharing EU Involvement • Support DTI (EISO, CSTF) • EWIS workshops • WISE bid • DDSI work • CASES • CERTs, CSIRTs & WARPs

  4. Information Sharing UK CERT Involvement • UNIRAS - Govt CERT est. 1992 • Incorporated into CIP organisation • Links to US/CAN/AUS/NZ • European Govt CERTs Forum • Participation in TF/CSIRT, FIRST

  5. Information Sharing UK Initiatives • UK CERTs forum • Encouraging new CERTs in UK • Encouraging Information Sharing Bodies • SAINT, ISACs • Support for EU projects (CASES, EWIS etc) • Conceive & promote WARPs • Warning, Advice & Reporting Points • Linked to CyberHood Watch (IAAC)

  6. Information Sharing Objectives • Increase Awareness, Education : • general e-environment (reduce Viruses, Worms, Trojans, DDoS etc) • Provide useful and timely warnings • To small communities (including citizens & SMEs) • Gather incident reports • Crime reports (pass on only with consent) • Statistics, Trends • Attack detection

  7. Information Sharing Warning, Advice & Reporting Points (WARPs) - Functions • Issue Alerts & Warnings from CERT/WARP network (and CASES) • Act as helpdesk for Advice on Internet/Infosec problems • Gather, sanitise, and share Incident Reports (with CERTs, WARPs, CASES) • Geared to SMEs, small organisations & Citizens

  8. Information Sharing Network Warnings Advice Incident Reports Problems The WARP model WARP e-COMMUNITY Trade association, interest group, local authority, industry sector

  9. WARPs ISACs CSIRTs NISCC/ UNIRAS CIP orgs Other Sources Information Sharing Network CASES

  10. Information Sharing WARPs Approach • Internet-based • Distributed, User-oriented, Devolved, Cooperative • Small is beautiful • In touch with community, Builds trust & confidence • Builds on successful ideas • Neighbourhood Watch, Citizens Advice Bureaux • A cost effective alternative to CERTs/CSIRTs • Fits into most Information Sharing models

  11. CASESCyber-Awareness and Security Enhancement Structure • A Coordinating Centre to encourage dissemination of Warning & Awareness materials via National Nodes

  12. CASES National Contact Point (Node) NCP NCP NCP Dissemination Dissemination Dissemination NCP NCP

  13. CASES CASES – Transnational approach • Builds on elements already there (CSIRTs, WARPs, e-Platforms) • Provides Coordination i.e. Cooperation (not control) • Aids e-Europe Programmes (confidence) • Promotes new national nodes (where they don’t exist) • Stimulates national Dissemination network, WARPs • Complements R&D work (identifies needs) • Provides test-bed

  14. CASES National Node WARP WARP WARP WARP WARP e-COMMUNITY e-COMMUNITY e-COMMUNITY

  15. Plain Sailing from now on ?

  16. No such thing as Plain Sailing !

  17. Thank You

More Related