DOE's Computer Incident Advisory Capability (CIAC)
Computer security is essential in maintaining quality in the computing environment. Computer security incidents, however, are becoming more sophisticated. The DOE Computer Incident Advisory Capability (CIAC) team was formed primarily to assist DOE sites in responding to computer security incidents. Among CIAC's other responsibilities are gathering and distributing information to DOE sites, providing training workshops, coordinating with other agencies, response teams, and vendors, creating guidelines for incident handling, and developing software tools. CIAC has already provided considerable assistance to DOE sites faced with virus infections and worm and hacker attacks, has issued over 40 information bulletins, and has developed and presented a workshop on incident handling. CIAC's experience in helping sites has produced several lessons learned, including the need to follow effective procedures to avoid virus infections in small systems and the need for sound password management and system administration in networked systems. CIAC's activity and scope will expand in the future. 4 refs.
- Research Organization:
- Lawrence Livermore National Lab., CA (USA)
- Sponsoring Organization:
- DOE/DP
- DOE Contract Number:
- W-7405-ENG-48
- OSTI ID:
- 6054719
- Report Number(s):
- UCRL-JC-105099; CONF-9010304--2; ON: DE91007136
- Country of Publication:
- United States
- Language:
- English
Similar Records
The Computer Incident Advisory Capability (CIAC) after one year
The FELICIA bulletin board system and the IRBIS anonymous FTP server: Computer security information sources for the DOE community. CIAC-2302