Computer Security Incident Response Team
RFC2350
1.1 Date of last update
Version 1.2 published on 2022/12/09.
1.2 Distribution lists for notifications
There is no distribution channel for notifying changes to this document.
1.3 Access to this document
The updated version of this document can be found at csirt.ipg.pt/rfc2350
An English version of this document can be found at csirt.ipg.pt/en/rfc2350
1.4 Authenticity of this document
This version of the CSIRT.PolitecnicoGuarda description is signed with the PGP key and the Portuguese version can be consulted at csirt.ipg.pt/rfc2350.txt and the English csirt.ipg.pt/rfc2350_en.txt.
2.1 Team name
CSIRT.PolitecnicoGuarda
2.2 Postal address
Av. Dr. Francisco Sá Carneiro 50, 6300-559 Guarda, Portugal
2.3 Time zone
Portugal/WEST (GMT+0, GMT+1 in summer time)
2.4 Telephone
+351 271 220 100
2.5 Fax
Non-existent.
2.6 Email address
Report incidents: report@ipg.pt
Other issues: csirt@ipg.pt
2.7 Other telecommunications
You can also use the form available on our website at the following address csirt.ipg.pt/contactos.
2.8 Public keys and cipher information
CSIRT.PolitecnicoGuarda provides a PGP key with KeyID 0x09404AAB, of the RSA type and with the fingerprint 1D0CFEC9A021169C3F648532355D99E009404AAB.
This key can be found at csirt.ipg.pt.
2.9 Team members
Coordination: Pedro Pinto
Members: Filipa Gaudêncio, Micael Pires
2.10 Other information
For more information on CSIRT.PolitecnicoGuarda you can consult csirt.ipg.pt.
2.11 Means of contact for users
CSIRT.PolitecnicoGuarda has several contact channels:
- Email to report computer security incidents: report@ipg.pt
- E-mail for other matters related to computer security: csirt@ipg.pt
- Telephone: +351 271 220 100
- Form: Available at csirt.ipg.pt/contactos
3.1 Mission
A nossa missão consiste em promover uma cultura de segurança nos meios informáticos seja dentro ou fora da comunidade académica do Politécnico da Guarda, recorrendo a ações de sensibilização, aconselhamento e dando resposta a incidentes de segurança informática detectados internamente ou reportados por equipas de resposta a incidentes das redes académicas e nacionais.
3.2 Community served
CSIRT.PolitecnicoGuarda responds to computer security incidents within the IPG - Politécnico da Guarda community.
The ranges of IP addresses and domains covered are:
IPv4
- 193.137.232.0/24
- 193.137.162.0/24
- 193.137.163.0/25
- 193.137.164.0/26
- 193.137.164.64/26
- 193.137.164.224/27
- 193.137.165.0/24
IPv6
- 2001:690:23d0::/48
Domains
- ipg.pt
- politecnicoguarda.pt
- politecnicodaguarda.pt
3.3 Membership
CSIRT.PolitecnicoGuarda, is a body belonging to the Polytechnic of Guarda
3.4 Authority
CSIRT.PolitecnicoGuarda operates within the authority delegated to it by the IT Services of the Polytechnic of Guarda. Its creation was reviewed and approved by the President of the Polytechnic of Guarda, thus enabling it to act within its legitimacy and capacity for action. It cooperates with the various administrators of the Systems Administration and Network Infrastructure departments, as well as the respective users of the institution's systems in carrying out their duties.
If any member of the community has any doubts or wishes to challenge any action taken by CSIRT.PolitecnicoGuarda, they should contact its coordinator.
4.1 Types of incident and level of support
The CSIRT.PolitecnicoGuarda has the power to act in the event of all types of security incidents that may occur at the Polytechnic of Guarda, namely attempts to successfully exploit vulnerabilities, compromise the confidentiality, integrity and availability of information, interrupt services, spread malware or unsolicited email and potential threats.
The level of support provided may vary depending on a number of factors, including the type and severity of the incident, the number of users involved and the resources available.
However, all incidents detected or reported will be dealt with as quickly as possible.
CSIRT.PolitecnicoGuarda undertakes to keep system administrators informed of potential vulnerabilities and to inform them as soon as possible.
4.2 Cooperation, interaction and privacy policy
The privacy and data protection policy by which CSIRT.PolitecnicoGuarda is governed establishes that sensitive information may be transmitted to third parties only and exclusively in case of real need and with the prior authorization of the institution's presidency.
4.3 Communication and authentication
The means of communication provided by CSIRT.PolitecnicoGuarda, whether by telephone, form or unencrypted e-mail, are considered sufficient for the transmission of non-sensitive information. In the event of the need to transmit sensitive information, it is mandatory to use the PGP cipher and signature which can be found on our website.
5.1 Incident handling
CSIRT.PolitecnicoGuarda actively collaborates in order to assist the various system and network administrators in the different aspects of a security incident, namely its mitigation and resolution.
It undertakes to deal mainly with security incidents in the context of the community, specifically incidents whose origin or target is the Polytechnic of Guarda.
5.2 Proactive activities
CSIRT.PolitecnicoGuarda coordinates and maintains various services within the capabilities of its available resources, such as awareness-raising actions aimed at the entire academic community on the issue of computer security, such as workshops, dissemination of emails accompanied by educational infographics and simulations of phishing campaigns.
Advice on raising awareness, promoting and implementing policies and good practices in IT security.
Continuously analyzing the entire infrastructure, applications and systems with a view to identifying computer security vulnerabilities. Assessing impacts, recommending corrections or changes in order to reduce the risk of data exposure, the compromise of information or systems.
Actively collaborate with other units, internal or external, in their areas of competence, participating in activities, projects or task forces of a national or international nature, promoting innovation and innovative services to the community.
CSIRT.PolitecnicoGuarda provides users with a form to report security incidents via its website. This form can be accessed via the following link csirt.ipg.pt/contactos.
Although every precaution is taken in the preparation of the information disclosed, CSIRT.PolitecnicoGuarda is not responsible for errors or omissions, or for damages resulting from the use of this information.