Skip to content

Security Incident Response

Following our Security Incident Response Procedure, which is part of the Helmholtz AAI Policies, HIFIS / Helmholtz ID operate a central mailing list for incident response:

  • security@hifis.net: This is the Infrastructure Security Contact point, which is open for anybody to post.

Subscribers to this list are:

  • Contacts for the SP-IdP-Proxy (Unity @ FZJ)
  • Contacts for HIFIS core services (Cloud Portal, Helpdesk, Plony)
  • HIFIS Cluster Contacts

In case of an incident, this Infrastructure Security Contact point will appoint and collaborate with the relevant Security Incident Response Coordinator(s) for the given incident.

SIRTFI

The Helmholtz AAI uses SIRTFI, the Security Incident Response Trust Framework for Federated Identity, to communicate and collaborate with other organisations and instances, which are involved in the security incident.

Reporting an incident

If you recognize a potential security incident on your site, regardless of which sort (Service Provider, Identity Provider, something else), please contact the central list above. In best case you follow SIRTFI, but do not waste time with studying it, if you need to report an incident and you are not familiar with it.

Need help?

Contact us if you need help.