G and R for Security Incident Processing (grip) Charter

NOTE: This charter is accurate as of the 37th IETF Meeting in San Jose. It may now be out-of-date. (Consider this a "snapshot" of the working group from that meeting.) Up-to-date charters for all active working groups can be found elsewhere in this Web server.


Operational Requirements Area Director(s):

Area Advisor

Mailing List Information

Description of Working Group

The full name of this working group is Guidelines and Recommendations for Security Incident Processing.

This working group is co-chartered by the Security Area.

The purpose of the GRIP Working Group is to provide guidelines and recommendations to facilitate the consistent handling of security incidents in the Internet community. Guidelines will address technology vendors, network service providers, response teams in their roles assisting organizations in resolving security incidents. These relationships are functional and can exist within and across organizational boundaries.

The working group will produce two quality documents:

1) Guidelines for security incident response teams.

2) Guidelines for vendors (this will include both technology producers and network service providers).

Goals and Milestones

Feb 95
Produce document describing problem statement and document taxonomy/vocabulary. Also cite the Site Security Handbook documents to make clear the relationship and scope between the two working groups and documents.
Feb 95
Produce draft outline for remainder of Response Team Document.
Meet at Danvers IETF to review full Internet-Draft of Response Team Document.
Jun 95
Produce final version of Response Team Internet-Draft.
Jun 95
Produce Internet-Draft on Guidelines for vendors.
Meet at Stockholm IETF. Review vendor Guideline Internet-Draft.
Sep 95
Produce final version of Vendor Guideline Internet-Draft. Submit to IESG for review.

Current Internet-Drafts

No Request for Comments