Information Protection
SK-CERT strictly follows the rules in handling and processing of sensitive information. Therefore, in communication it uses Traffic Light Protocol (TLP) which ensures the information classification according to specified addressees. SK-CERT also uses PGP protocol for transfer of important information, whereas the public key for communication with SK-CERT can be found in Contact and Information.
TLP protocol
Traffic Light Protocol (TLP) was created in order to facilitate greater sharing of information. TLP is a set of designations used to ensure that sensitive information is shared with the appropriate audience. It employs four levels individually marked with different colour, whereas these levels separate individual distribution rules. SK-CERT uses TLP for sharing of information and also supports that protocol as a recipient and follows its rules. For reporting incidents and also in common communication with SK-CERT unit, please use TLP according to the following table:
TLP | Distribution | Usage | Description |
Sharing only between two subjects | Documents and e-mails are marked in the header and footer as well as in the Subject line as: TLP: RED |
Used for sharing only between two subjects without further distribution. The recipient may not share TLP: RED information outside of meeting or group in which the information was originally disclosed. | |
Sharing within a certain closed community | Documents and e-mails are marked in the header and footer as well as in the Subject line as: TLP: AMBER |
Used for sharing only within the organisation or towards its constituency who need to know the information with TLP: AMBER. The recipient may distribute TLP: AMBER information within own organisation or constituency. | |
Sharing within a sector or a certain community | Documents and e-mails are marked in the header and footer as well as in the Subject line as: TLP: GREEN |
Used if the distributed information is intended for a particular sector or community. It is a non-public information. | |
Sharing without limitations; it is public information | Documents and e-mails are marked in the header and footer as well as in the Subject line as: TLP: WHITE |
Used if the information contains a minimum or no foreseeable risk of misuse in accordance with valid rules and procedures. It is mainly a public information. |