To the ever increasing complexity and number of incidents, with the management effort that this actually means, CCN-CERT, centre National Cryptologic (CCN), has put in place a tool that allows for enhanced coordination among the various organizations and National Governmental CERT in managing incidents. It is LUCIA (Consolidated List of Incidents and Threats), a new service made available to all organizations through the portal of CCN-CERT itself.
In the development of the tool, which have used almost two years, has sought to improve the care of incidents, automating those tasks that allow it, and helping to reduce response time to an incident. Had also been made to improve information-sharing processes and the way in which information is shared, not only creating safe channels to support the authenticity and integrity of the information, but also allow to analysis and processing of more accurate information through the tool.
LUCIA, based on the issue tracker system Request Tracker (RT) and its extension for response to incidents Request Tracker for Incident Response (RT-IR), has been tailored to meet the requirements and procedures and CCN-CERT aligned with the implementation of national security Scheme (NHIS).
Among the main benefits of LUCIA is providing a tool for incident management, in the case of a shortage; meet the requirements of the NHIS and Guide 817 (incident management) and provide a common language of hazards and classification, based on two levels and strongly supported by international institutions.
Other advantages is improving coordination between the CCN-CERT and all bodies that offers its services, especially those attached to the early warning system (SAT), through the integration of security incidents with the National Government CERT; improve the exchange of information of security incidents; maintain traceability and follow-up to the incident; improvement in management processes and automation of tasks and to enable their integration with other systems.