NORDUnet provides a wide range of services for the Nordic research and education community, both core network services, above-the-net services, and logistics-related services, both highly technical and non-technical in nature.
The NORDUnet Computer Emergency Response Team (CERT) performs security incident handling in cooperation with the CERT’s of the Nordic national research and education networks.
This document complies with RFC 2350.
This is version 1.3.4 as of May 4, 2020
This profile is kept up-to-date in the location specified in section 1.3.
E-mail notification of updates are sent to NORDUnet CERT management and investigators.
Please send any questions about updates to the NORDUnet CERT team e-mail address: firstname.lastname@example.org
The current version of this profile is always available at NORDUnet CERT RFC 2350 Profile
Full name: NORDUnet CERT Computer Emergency Response Team.
Short name: NORDUnet CERT
NORDUnet CERT regular telephone number: +45 32 46 25 00
NORDUnet CERT emergency telephone number: +45 31 62 14 03
NORDUnet CERT facsimile number: +45 45 76 23 66
Please send incident reports that relate to NORDUnet, including copyright issues, spam and abuse to email@example.com
For encrypted communication firstname.lastname@example.org should be used, see further below.
Please encrypt any sensitive e-mail with the NORDUnet CERT PGP key with PGP keyed 7370267F and PGP fingerprint E8D9 5672 3B11 06A0 0519 F9EB 2815 77BD 7370 267F and send it to email@example.com
Please sign messages using a key that is verifiable using the public keyservers. Because all NORDUNET CERT investigators can read mail encrypted with the firstname.lastname@example.org key, individuals can use it if they cannot find a key for a specific NORDunet CERT team member.
No public information is provided about NORDUnet CERT team members.
Further information about the NORDUnet CERT can be found at NORDUnet CERT
NORDUnet CERT is “Certified” by the Trusted Introducer (TI) since 1 June 2016 and has been registered as “TI Accredidited CERT” since 31 Aug 2000; see for details. NORDUnet CERT is a member of Forum for Incident Response and Security Teams (FIRST); see https://www.first.org/members/teams/nordunet for details.
The preferred method for contacting NORDUnet CERT is e-mail.
NORDUnet CERT’s hours of operation are generally restricted to regular business hours, or 09:00 to 17:00 Monday to Friday except Danish public holidays.
The NORDUnet CERT mission is to:
NORDUnet serves its own infrastructure and its member organisations where applicable.
The NORDUnet AS-number is: 2603
NORDUnet CERT operates with the authority delegated by NORDUnet.
NORDUnet CERT operates under the auspices of the NORDUnet members and the supervision of the NORDUnet management.
All incidents classified in CERT – Security Severity Guidelines
NORDUnet CERT strives to closely collaborate with the NREN and CSIRT community to protect the infrastructure and data of NORDUnet and its members. Only data that is required to resolve from the specific incident are disclosed to concerned parties (need to know). NORDUnet CERT provide means to support encryption and integrity of data that is submitted to or disclosed by NORDUnet CERT
When reporting an incident of sensitive nature, please state so explicitly by using an appropriate label in the Subject field (for example, SENSITIVE, EMERGENCY, etc.) and if possible, use encryption as well.
NORDUnet CERT supports the Information Sharing Traffic Light Protocol (ISTLP; see https://www.first.org/tlp/ ; information that arrives with the tags WHITE, GREEN, AMBER, or RED will be handled appropriately.
See section 2.8; usage of PGP in all cases where sensitive information is involved is highly recommended.
NORDUnet CERT can assist system administrators in handling the technical and organizational aspects of computer security incidents.
Not available; please report using e-mail. When reporting an incident of sensitive nature use encrypted e-mail.