Computer Security Incident Response Team

RFC2350

1.1 Date of last update

Version 1.2 published on 2022/12/09.

1.2 Distribution lists for notifications

There is no distribution channel for notifying changes to this document.

1.3 Access to this document

The updated version of this document can be found at csirt.ipg.pt/rfc2350

An English version of this document can be found at csirt.ipg.pt/en/rfc2350

1.4 Authenticity of this document

This version of the CSIRT.PolitecnicoGuarda description is signed with the PGP key and the Portuguese version can be consulted at csirt.ipg.pt/rfc2350.txt and the English csirt.ipg.pt/rfc2350_en.txt.

2.1 Team name

CSIRT.PolitecnicoGuarda

2.2 Postal address

Av. Dr. Francisco Sá Carneiro 50, 6300-559 Guarda, Portugal

2.3 Time zone

Portugal/WEST (GMT+0, GMT+1 in summer time)

2.4 Telephone

+351 271 220 100

2.5 Fax

Non-existent.

2.6 Email address

Report incidents: report@ipg.pt

Other issues: csirt@ipg.pt

2.7 Other telecommunications

You can also use the form available on our website at the following address csirt.ipg.pt/contactos.

2.8 Public keys and cipher information

CSIRT.PolitecnicoGuarda provides a PGP key with KeyID 0x09404AAB, of the RSA type and with the fingerprint 1D0CFEC9A021169C3F648532355D99E009404AAB.

This key can be found at csirt.ipg.pt.

2.9 Team members

Coordination: Pedro Pinto

Members: Filipa Gaudêncio, Micael Pires

2.10 Other information

For more information on CSIRT.PolitecnicoGuarda you can consult csirt.ipg.pt.

2.11 Means of contact for users

CSIRT.PolitecnicoGuarda has several contact channels:

3.1 Mission

A nossa missão consiste em promover uma cultura de segurança nos meios informáticos seja dentro ou fora da comunidade académica do Politécnico da Guarda, recorrendo a ações de sensibilização, aconselhamento e dando resposta a incidentes de segurança informática detectados internamente ou reportados por equipas de resposta a incidentes das redes académicas e nacionais.

3.2 Community served

CSIRT.PolitecnicoGuarda responds to computer security incidents within the IPG - Politécnico da Guarda community.

The ranges of IP addresses and domains covered are:

IPv4
  • 193.137.232.0/24
  • 193.137.162.0/24
  • 193.137.163.0/25
  • 193.137.164.0/26
  • 193.137.164.64/26
  • 193.137.164.224/27
  • 193.137.165.0/24
IPv6
  • 2001:690:23d0::/48
Domains
  • ipg.pt
  • politecnicoguarda.pt
  • politecnicodaguarda.pt
3.3 Membership

CSIRT.PolitecnicoGuarda, is a body belonging to the Polytechnic of Guarda

3.4 Authority

CSIRT.PolitecnicoGuarda operates within the authority delegated to it by the IT Services of the Polytechnic of Guarda. Its creation was reviewed and approved by the President of the Polytechnic of Guarda, thus enabling it to act within its legitimacy and capacity for action. It cooperates with the various administrators of the Systems Administration and Network Infrastructure departments, as well as the respective users of the institution's systems in carrying out their duties.

If any member of the community has any doubts or wishes to challenge any action taken by CSIRT.PolitecnicoGuarda, they should contact its coordinator.

4.1 Types of incident and level of support

The CSIRT.PolitecnicoGuarda has the power to act in the event of all types of security incidents that may occur at the Polytechnic of Guarda, namely attempts to successfully exploit vulnerabilities, compromise the confidentiality, integrity and availability of information, interrupt services, spread malware or unsolicited email and potential threats.
The level of support provided may vary depending on a number of factors, including the type and severity of the incident, the number of users involved and the resources available.
However, all incidents detected or reported will be dealt with as quickly as possible.
CSIRT.PolitecnicoGuarda undertakes to keep system administrators informed of potential vulnerabilities and to inform them as soon as possible.

4.2 Cooperation, interaction and privacy policy

The privacy and data protection policy by which CSIRT.PolitecnicoGuarda is governed establishes that sensitive information may be transmitted to third parties only and exclusively in case of real need and with the prior authorization of the institution's presidency.

4.3 Communication and authentication

The means of communication provided by CSIRT.PolitecnicoGuarda, whether by telephone, form or unencrypted e-mail, are considered sufficient for the transmission of non-sensitive information. In the event of the need to transmit sensitive information, it is mandatory to use the PGP cipher and signature which can be found on our website.

5.1 Incident handling

CSIRT.PolitecnicoGuarda actively collaborates in order to assist the various system and network administrators in the different aspects of a security incident, namely its mitigation and resolution.
It undertakes to deal mainly with security incidents in the context of the community, specifically incidents whose origin or target is the Polytechnic of Guarda.

5.2 Proactive activities

CSIRT.PolitecnicoGuarda coordinates and maintains various services within the capabilities of its available resources, such as awareness-raising actions aimed at the entire academic community on the issue of computer security, such as workshops, dissemination of emails accompanied by educational infographics and simulations of phishing campaigns.
Advice on raising awareness, promoting and implementing policies and good practices in IT security.
Continuously analyzing the entire infrastructure, applications and systems with a view to identifying computer security vulnerabilities. Assessing impacts, recommending corrections or changes in order to reduce the risk of data exposure, the compromise of information or systems.
Actively collaborate with other units, internal or external, in their areas of competence, participating in activities, projects or task forces of a national or international nature, promoting innovation and innovative services to the community.

CSIRT.PolitecnicoGuarda provides users with a form to report security incidents via its website. This form can be accessed via the following link csirt.ipg.pt/contactos.

Although every precaution is taken in the preparation of the information disclosed, CSIRT.PolitecnicoGuarda is not responsible for errors or omissions, or for damages resulting from the use of this information.

Top