NIST logo

Publication Citation: Establishing a Computer Security Incident Response Capability (CSIRC)

NIST Authors in Bold

Author(s): John P. Wack;
Title: Establishing a Computer Security Incident Response Capability (CSIRC)
Published: November 01, 1991
Abstract: [Superseded by SP 800-61 (January 2004): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=151291] Government agencies and other organizations have begun to augment their computer security efforts because of increased threats to computer security. Incidents involving these threats, including computer viruses, malicious user activity, and vulnerabilities associated with high technology, require a skilled and rapid response before they can cause significant damage. These increased computer security efforts, described here as Computer Security Incident Response Capabilities (CSIRCs), have as a primary focus the goal of reacting quickly and efficiently to computer security incidents. CSIRC efforts provide agencies with a centralized and cost-effective approach to handling computer security incidents so that future problems can be efficiently resolved and prevented.
Citation: NIST SP - 800-3
Pages: 45 pp.
Keywords: incident response; information security; malware
Research Areas: Computer Security, Cybersecurity