[Bp_certs] About types of CERTs
Damir Rajnovic
gausix at gmail.com
Thu Jul 31 05:01:01 EDT 2014
On Thu, Jul 31, 2014 at 09:58:38AM +0200, Patrik Fältström wrote:
> On 31 jul 2014, at 09:51, Andrew Cormack <Andrew.Cormack at ja.net> wrote:
>
> > The specific references are to European law, but I think the
> > conclusion that "special" status can actually reduce the amount
> > of information that others share with you, is general.
>
> Bingo!
This is true but to an extent.
Within a country the government can pass laws mandating that
all teams within the country must share information with the
national CERT. Teams from other countries may not contact
the national CERT at all but teams within country would not
have a choice.
What you two are saying is correct in principle and if we
would look at the problem as a free market. People would
always use teams that provide the most utility back. In
practice things can be distorted and laws have tendency
of introducing all sorts of kinks and warps.
Gaus
==============
Damir Rajnovic <gausix at gmail.com>
Telephone: +44 7825 049 500
==============
There are no insolvable problems.
The question is can you accept the solution?
Incident Response and Product Security
http://www.ciscopress.com/bookstore/product.asp?isbn=1587052644
More information about the Bp_certs
mailing list