Description
OSCT needs to deal with sensitive information, but must also
be able to communicate with all the sites and other external
projects.
Specific issues have recently been reported, for which
feedback and recommendations from the ROCs would be necessary:
-
What is the best way to handle the information flow for
unpatched software or operational vulnerabilities? (GSVG ->
OSCT -> all sites) -
How can we resolve or mitigate SPAM problems on the
incident reporting channels, while enabling external
communities to contact our CSIRTs? -
Do we need a both a CSIRT and a CONTACTS list?