The Computer Incident Advisory Capability (CIAC) after one year
The Computer Incident Advisory Capability (CIAC) team has, at the time this paper is being written, been in existence for one year. The CIAC team has grown in size somewhat over this year. CIAC has already had a large impact on the DOE community. For example, CIAC now has a number of achievements, such as a track record of providing effective assistance in responding to incidents, getting information to the DOE community through advisory notices and information bulletins, helping identify and close vulnerabilities, and developing and presenting a well-received workshop on responding to incidents. The current funding situation has had a major impact on CIAC's operating procedures and capabilities, which are described in some detail. Finally, prescriptions for increased success of the CIAC effort include making CIAC as apolitical as possible, having realistic expectations based on the size of the team and limited resources, funding at a level appropriate to the many requirements and expectations placed on this project, improving communications, and different approaches to evaluating CIAC's role and actions.
- Research Organization:
- Lawrence Livermore National Lab., CA (United States)
- Sponsoring Organization:
- USDOE; USDOE, Washington, DC (United States)
- DOE Contract Number:
- W-7405-ENG-48
- OSTI ID:
- 6014189
- Report Number(s):
- UCRL-102988; CONF-9005106-3; ON: DE92006886
- Resource Relation:
- Conference: 13. Department of Energy computer security group conference: security through teamwork, Augusta, GA (United States), 8-10 May 1990
- Country of Publication:
- United States
- Language:
- English
Similar Records
DOE's Computer Incident Advisory Capability (CIAC)
The FELICIA bulletin board system and the IRBIS anonymous FTP server: Computer security information sources for the DOE community. CIAC-2302