SURFcertSURFcert provides your institute with security-incident support 24 hours a day, seven days a week. SURFcert also uses tools and other resources to optimise security within institutions themselves.
Institutes connected to the SURFnet network can make use of the SURFcert incident response service 24 hours a day, seven days a week. Institutes report security breaches (incidents) to SURFcert, who will keep the institute informed of the progress of the incident, and provide any necessary advice on how to resolve it. SURFcert has been accredited by FIRST.
Optimising institutional security
SURFnet also works with institutions to optimise security using tools and other resources.
- CVPO (CERT-formation process support)
SURFnet supports institutes in the setup and training of local Company Emergency Response Teams (CERTs).
- TRANSITS training programme
SURFacademy offers twice-yearly training for new and existing institutional CERT members. More about TRANSITS
- SCIRT (SURFnet Community of Incident Response Teams)
An operational security working group, with a focus on incident management. More about SCIRT
Netflow is a service that analyses data on traffic to and from the institute, in order to detect network attacks at an early stage and limit the damage caused.
AIRT is a workflow application used by SURFcert to record and forward security breaches and incidents to institutes. More about AIRT
Who can use SURFcert?
SURFcert is available to institutes connected to SURFnet.
Telephone: +31-887873000 - during office hours
Alarm number - 24 hours a day, 7 days a week: +31-622923564
3501 DA Utrecht
Use the public SURFnet-CERT PGP key to send confidential messages to SURFnet-CERT and to verify the digital signature from SURFnet-CERT.
Operational information on SURFcert
- Background information on SURFcert
- Flyer about SURFcert (PDF)
- Flyer about SURFcert DDoS protection (PDF)
- More information on CERT teams
- Overview of all CERT teams
- SURFcert Service Description (RFC 2350)
This service is included in SURFnet's core package.