Corporate Responsibility

RFC 2350 Deutsche Telekom CERT

  • Share
    Two clicks for more data privacy: click here to activate the button and send your recommendation. Data will be transfered as soon as the activation occurs.
  • Print
  • Read out

Version: 0.3
Date: 1 Feb 2022, 10:00:00 +0100
Contact: cert@telekom.de

1. Document information
This document contains a public description of Deutsche Telekom CERT according to RFC 2350. It provides basic information about the CERT, the ways it can be contacted, describes its responsibilities and the services offered.

1.1 Date of last update
1 Feb 2022, 10:00:00 +0100

1.2 Distribution list for notifications
There are no public distribution list for notifications as of 2019/02.

1.3 Locations where this document may be found
The current version of this document can always be found at: http://www.telekom.com/security/cert

1.4 Document Authenticity
This document can be retrieved from our webserver using TLS/SSL.

2. Contact information
2.1 Name of the team
Deutsche Telekom CERT

2.2 Address
Deutsche Telekom AG
Deutsche Telekom CERT
Bonner Talweg 100
D-53113 Bonn
 

2.3 Time zone
We are located in the central European timezone (CET) which is GMT+0100 (+0200/CEST during summer time in Europe, approximately end of March until End of October).

2.4 Telephone numbers
+49 228 181 71773 (primary number, 24/7)
+49 800 3824 2378

Please observe that the above published telephone numbers are solely intended for communication related to critical security incidents. Disregard this previous condition might lead to blacklisting of your telephone numbers on our PBX.
 

2.5 Facsimile number
None.

2.6 Other telecommunication
None.

2.7 Electronic mail address
Please send incident reports to cert@telekom.de.

2.8 Public keys and encryption information
User ID: Deutsche Telekom CERT - Team Key 2021 - 2023 <cert@telekom.de>

Key ID: 0x9739EC22 Key type: RSA

Key size: 4096 Expires: 2023-08-29

Fingerprint E08D F5F2 5F57 4A01 3E88 7C91 9DD0 D037 9739 EC22

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=SQ4o
-----END PGP PUBLIC KEY BLOCK-----

3. Charter
3.1 Mission statement
Protect Deutsche Telekom and its constituents from attacks, using state-of-the-art detection methods. Professionally manage cyber incidents and ensure the timely and sustainable resolution and recovery.

3.2 Constituency
Deutsche Telekom CERT's constituency is mixed, thus, the team attends internal and external customers.

3.3 Sponsorship and/or affiliation
Deutsche Telekom CERT is an internal unit of Deutsche Telekom AG and is solely financed and supported by the latter.

3.4 Authority
The main purpose of Deutsche Telekom CERT is the group-wide and multinational coordination of incident response and operative incident handling, throughout Deutsche Telekom subsidiaries and member companies.

Deutsche Telekom CERT has indirect authority over AS3320 (DTAG) and with the German CERT- Verbund (union of German CERTs), it is an accredited TI (Trusted Introducer) team, and also a full member of FIRST (Forum of Incident Response and Security Teams).

further European and International Institutions such as: * ETIS - The Global IT Association for Telecommunications * ETNO - European Telecommunications Network Operators' Association

4. Policies
4.1 Types of incidents and level of support
Deutsche Telekom CERT addresses all kinds of security incidents which occur, or threaten to occur, within its constituency.

The level of support depends on the type and severity of the given security incident, the impact for affected companies and persons within our constituency, and our resources at the time. Usually, our first response is timely at the same working day.

We expect end users to contact their local systems or network administrators or their local security contacts.

4.2 Co-operation, interaction and disclosure of information
Deutsche Telekom CERT highly regards the importance of operational cooperation and information-sharing between Computer Emergency Response Teams, and also with other organizations which may contribute towards or make use of their services.

Deutsche Telekom CERT operates in strict compliance with German and/or EU legislation.

4.3 Communication and authentication
Deutsche Telekom CERT makes use common cryptographic methods to ensure the confidentiality and integrity of the communications. GPG/PGP and S/MIME are available for general communication via email.

5. Services
5.1 Incident response
Deutsche Telekom CERT is able to perform operative incident handling in several different environments. The tasks include large-scale hunting and detection of security incidents, artifact collection, artifact analysis and reverse engineering.

5.2 Incident coordination
Deutsche Telekom CERT ensures it has operational capabilities to coordinate large-scale cyber security incidents and emergencies.

Deutsche Telekom CERT will also collect statistics about incidents within its constituency.

5.3 Proactive activities
Deutsche Telekom CERT offers up-to-date information about security vulnerabilities to its internal constituents. Besides, the team continuously develops new tools for incident detection and investigation.

6. Incident reporting forms
There are no public forms available. All communication should be directed to mailto:cert@telekom.de. We recommend any communication related to security incidents or Vulnerabilities to be encrypted by GPG/PGP tools. Please use our current team-key, published on this website.

7. Disclaimers
While every precaution will be taken in the preparation of information, notifications and alerts, Deutsche Telekom CERT assumes no responsibility for errors or omissions, or for damages resulting from the use of the information contained within.

FAQ