This website has been translated by machine translation software and has not been subsequently revised by translators. Further information at: link. Hide
the accesskey _ mod _ content
-

LUCIA (coordination Unified List of incidents and threats)

  • Short Name:
    lucia
    Summary:
    LUCIA is a tool developed by the CCN-CERT for managing Ciberincidentes entities in the scope of the national security Scheme. it allows to improve coordination between different organizations and CCN-CERT himself in managing incidents. Is based on the system of occurrences Request Tracker (RT) and its extension for teams of response to incidents Request Tracker for Incident Response (RT-IR), and has been customized to meet the requirements and procedures for the CCN-CERT and aligned with the implementation of National security Scheme (NHIS)
    Target audience:
    Company, Any Public Administration
    Agencies Responsible:
    DEFENCE MINISTRY
    National intelligence center
    National Criptologico centre
    Usage:
    Network service insertable in customer applications
    Installable product
    Contact:

    lucia@ccn-cert.cni.es

    Type of Solution:
    Application, infrastructure or common service
    Status of the Solution:
    Production
    Organic Area:
    State
    Technical Area:
    Gestión de servicios y sistemas , Infraestructura de comunicaciones y mensajería , Servicios horizontales para las AA.PP
    Functional Area:
    Government and the public Sector, health
    License:
    GPL (GNU General Public License)
    Interoperability level:
    Technical

    Description

    Herramienta para la gestión de ciberincidentes en las entidades del ámbito de aplicación del Esquema Nacional de Seguridad. Con ella se pretende mejorar la coordinación entre el CERT Gubernamental Nacional y los distintos organismos y organizaciones con las que colabora.

    Provides a common language of danger and classification of the incident and maintains traceability and monitoring of the same. The system allows, in addition, automate tasks and integrate with other systems already implanted.

    Con la herramienta LUCIA, el organismo podrá gestionar tres tipos de ciberincidentes: 

    • The agency's own incidents
    • From the early warning system SARA Network (SAT-SARA).
    • The from the early warning system of The Internet (SAT-INET).

    The benefits:

    • Una herramienta de gestión de incidentes en el caso de que no dispongan ninguna o necesiten una específica.
    • Cumplir los requisitos del Esquema Nacional de Seguridad (ENS) y la guía CCN STIC 817 (Gestión de incidentes en el ENS)
    • Offer a common language of danger and classification of the incident in line with the guides CCNSTIC 403 and CCN-STIC 817 based on two levels and backed by international institutions.
    • Mejorar la coordinación entre el CCN-CERT y todos los organismos a los que ofrece sus servicios mediante la Integración de los incidentes de seguridad con el CCN-CERT
    • Improve information exchange of security incidents.
    • Keep the traceability and monitoring of the incident
    • Improvement in management processes
    • Automate tasks and allow its integration with other systems
    • Categorization of the closure and causes of the incident
    • Construct databases of knowledge
    • Improved management of projects and SAT-INET SARA SAT

    News

    28 May 2015

    Puesta en marcha de LUCIA, la herramienta del CCN-CERT para la coordinación en la gestión de incidentes Unshade accordion

    La herramienta Listado Unificado de Coordinación de Incidentes y Amenazas - LUCIA, basada en el sistema de incidencias Request Tracker (RT), cumple con los requisitos del Esquema Nacional de Seguridad (ENS) y la Guía CCN-STIC 817 de Gestión de Incidentes.

    Ante el incremento constante del número de incidentes y el esfuerzo de gestión que este hecho provoca, el CCN-CERT, del Centro Criptológico Nacional (CCN), ha desarrollado una herramienta que permite mejorar la coordinación entre las distintas organizaciones y el propio CCN-CERT en la gestión de incidentes. Se trata de LUCIA (Listado Unificado de Coordinación de Incidentes y Amenazas), un nuevo servicio puesto a disposición de todas las organizaciones que colaboran con el CERT Gubernamental Nacional.

    La nueva herramienta, basada en el sistema de incidencias Request Tracker (RT)  y en su extensión para equipos de respuesta a incidentes Request Tracker for Incident Response (RT-IR), ha sido personalizada para cumplir los requerimientos y procedimientos del CCN-CERT y alineadas con el cumplimiento del Esquema Nacional de Seguridad (ENS).

    Among the main benefits of LUCIA is the provide a tool for managing incidents, in the case of not having; comply with the requirements of ENS and the guide 817 (incident management) and offer a common language of danger and classification, based on two levels and backed by international institutions.

    Other advantages are improving coordination between the CCN-CERT and all the bodies that offers its services, especially those attached to the early warning system (SAT), through the integration of security incidents with the National Government CERT; improve information exchange of security incidents; maintaining traceability and monitoring of the incident; improvement in management processes and automation of tasks and allow their integration with other systems.

    Original source of the news (Opens in new window)

    More information about the LUCIA solution in the CTT
    More information on LUCIA (Opens in new window) in the CCN-CERT

    Subscriptions

    En esta área podrá darse de alta para recibir las notificaciones de cambios que se realicen en noticias, documentos o foros relacionados con la solución o el activo semántico.

    - PAe subscription management

    The fields with an asterisk * are required. It must mark at least one of the subscription rushes (News, documents or forums) and indicate the email in the text field indicated for the high or low of subscription.

    Enter the email with which you want to receive notifications of the solution or the active semantic.

    *

    Enter the email to unsubscribe from the unsubscribe.
General access point
General access point
Maintainer