RFC 2350 1. Document Information This document contains a description of CSIRT-SAS according to RFC 2350. It provides basic information about the CSIRT, the ways it can be contacted, and describes its responsibilities and the services offered. 1.1 Date of Last Update This is version 1.0.0 as of 2025/10/13. 1.2 Distribution List for Notifications There is no distribution list for notifications as of August 2025. 1.3 Locations where this Document May Be Found The current version of this document can always be found at https://csirt.sav.sk/rfc2350.txt 2. Contact Information 2.1 Name of the Team CSIRT-SAS: Computer Security Incident Response Team of Slovak Academy of Sciences 2.2 Address CSIRT-SAS Centrum spolocnych cinnosti SAV, v. v. i. Vypoctove stredisko SAV Dubravska cesta 9 845 35 Bratislava Slovak Republic 2.3 Time Zone Central European Time: GMT+1, DST: GMT+2 (DST starts at 01:00 UTC on the last Sunday in March and ends at 01:00 UTC on the last Sunday in October.) 2.4 Telephone Number +421 2 3229 3123 (ask for the CSIRT-SAS) 2.5 Facsimile Number +421 2 3229 3103 2.6 Other Telecommunication None. 2.7 Electronic Mail Address Please send incident reports to csirt@savba.sk. Non-incident-related mail should be addressed to csirt-info@savba.sk 2.8 Public Keys and Encryption Information CSIRT-SAS does sign outgoing messages. Furthermore, CSIRT-SAS can decrypt messages and verify the digital signature of a message. The current CSIRT-SAS team-key can be found on https://csirt.sav.sk/info 2.9 Team Members The CSIRT team leader is Ing. Michal Kaduc. Other team members, along with their areas of expertise and contact information, are listed on the CSIRT-SAS web pages. https://csirt.sav.sk/kontakt/ 2.10 Other Information General information about the CSIRT-SAS can be found at https://csirt.sav.sk/. 2.11 Points of Customer Contact The preferred method for contacting CSIRT-SAS is via e-mail. For incident reports and related issues, please contact us at csirt@savba.sk. For general inquiries, please send an e-mail to csirt-info@savba.sk. If it is not possible (or advisable due to security reasons) to use e-mail, you can reach us via telephone at +421 2 3229 3123 (ask for the CSIRT-SAS). The CSIRT-SAS's hours of operation are generally restricted to 09:00-16:00, Monday to Friday, except for holidays. 3. Charter 3.1 Mission Statement The goals of CSIRT-SAS are: - to create trustworthy central contact point for ICT infrastructure at Slovak Academy of Sciences (SAS), - to prevent, detect and resolve computer security incidents related to the SAS infrastructure, - to raise security awareness (raising in the field of information security, cooperation with international counterparts and organizations and representation of SAS in the field of information security internationally). 3.2 Constituency The constituency are researchers, staff, co-workers of Slovak Academy of Sciences, Slovakia and other institutions connected to Slovak academy network (SANET) by Slovak Academy of Sciences: - all IPv4 addresses within range 147.213.0.0/16, - all IPv6 addresses within range 2001:4118:900::/48 - domain *.sav.sk, *.savba.sk 3.3 Sponsorship and/or Affiliation CSIRT-SAS is part of Computing Center of the Slovak Academy of Sciences in Bratislava. 3.4 Authority CSIRT-SAS is an academic CSIRT (Computer Security Incident Response Team of Slovak Academy of Sciences in Bratislava). In accordance with the internal organizational regulations of the SAS Computing Center, which issue the Directive on the use of the SAS computer network, CSIRT-SAS ensures coordination and establishes the procedure for resolving security incidents. It is authorized to execute: - assign IP address ranges to relevant SAS organizations, - ensure the development of the managed SAS network and services, - monitor the status of the network and cooperate with the local computer network administrator in identifying network problems, - immediately disconnect any device that violates the SAS computer network usage guidelines from the computer network, - control of security vulnerabilities related to the SAS environment, - supervise the security of the managed SAS network, - operation of security and monitoring tools.