From March 11th to March 13th CERT.at hosted an introductory MeliCERTes Training which covered the basic functionalities of the applications used in MeliCERTes as well as the topic of CSIRT maturity as laid down in the SIM3 model and covered by the CSIRT maturity self-assessment survey by ENISA.
Together with teams from the Czech Republic, Hungary, Italy, and Croatia, as well as the trainers from the MeliCERTes consortium we spent three days looking into the MeliCERTes project and discussing how it could be improved to better meet the needs and expectations of CERTs/CSIRTs in the EU.
We also had the possibility to talk to the leading software engineer about the current status of the project as well as what remains to be done.
During the labs and excercises a number of bugs were found and noted by the trainers to pass them on to the developers. Additionally, the hands-on part spawned a lot of questions about the technical and implementational details of the platform and the applications it provides in the default configuration. The discussions which followed helped all participants to evaluate MeliCERTes more objectively for their particular situations.
In summary we had three days to learn about MeliCERTes in general, get to know its design goals but also have a look at its current technical as well as architectural shortcomings. The attendees also provided a lot of feedback to the trainers about what MeliCERTes is expected to be capable of once it is to be used productively by CSIRTS/CERTs in Europe on a daily basis.
Thanks to all participants and trainers, we are looking forward to the upcoming exercises and stresstests. We hope these will prove the usefulness of the project for the CSIRT community.
This blog post is part of a series of blog posts related to our CEF-Telcom-2016-3 project, which also supports our participation in the CSIRTs Network.
Author: Dimitri Robl