EDU-CERT is authorized to address all types of computer security incidents which occur, or threaten to occur within its constituency.
The level of support given by EDU-CERT will vary depending on the type and severity of the incident or issue, the type of constituent, the size of the user community affected, and the EDU-CERT's resources at the time, though in all cases some response will be made within one working day.
We expect end users to contact their local systems or network administrators at the level of the connected institution.
EDU-CERT will exchange all necessary information with other CSIRTs as well as with other affected parties if they are involved in the incident or incident response process.
Furthermore, unless explicitly authorized, appropriate measures will be taken to protect the identity of members of our constituency.
For sensitive information exchanges we prefer encrypted and signed e-mail using PGP. For other communication phone, facsimile, postal service, or unencrypted e-mail may be used.