Download eBook for Free

Full Document

FormatFile SizeNotes
PDF file 1.5 MB

Use Adobe Acrobat Reader version 10 or higher for the best experience.

Summary Only

FormatFile SizeNotes
PDF file 0.1 MB

Use Adobe Acrobat Reader version 10 or higher for the best experience.

In 2003 the European Commission supported RAND Europe in the development of a Handbook that provided an easy-to-use guide matching technical descriptions of incidents to the legal framework of the country in question and details procedures for working with law enforcement to respond to incidents. This handbook was tailored to the user requirements of Europe's Computer Emergency Response Team (CERT) and Computer Security Incident Response Team (CSIRT) community. RAND Europe and Lawfort, a Belgian law firm, compiled the 2005 edition of the CSIRT Legal Handbook. This edition represents a significant update, taking into account recent developments in national legal frameworks and extending its scope to cover the 10 new EU member states that joined in 2004. The project to update the Handbook revisited the incident taxonomy, reviewed and analysed standard enquiries and reporting needs, surveyed national legal frameworks and relevant industrial initiatives. The 2005 CSIRT Legal Handbook is globally unique in the field of information security as it provides access to a comprehensive and up-to-date collection of information on rules, regulations and laws concerning computer misuse. In addition, it also details collection and reporting of computer evidence currently in force in all 25 EU countries, together with guidelines as to when and how law enforcement must be informed of incidents.

Research conducted by

The research described in this report was prepared for the European Commission and was conducted by RAND Europe.

This report is part of the RAND technical report series. RAND technical reports may include research findings on a specific topic that is limited in scope or intended for a narrow audience; present discussions of the methodology employed in research; provide literature reviews, survey instruments, modeling exercises, guidelines for practitioners and research professionals, and supporting documentation; or deliver preliminary findings. All RAND reports undergo rigorous peer review to ensure that they meet high standards for research quality and objectivity.

This document and trademark(s) contained herein are protected by law. This representation of RAND intellectual property is provided for noncommercial use only. Unauthorized posting of this publication online is prohibited; linking directly to this product page is encouraged. Permission is required from RAND to reproduce, or reuse in another form, any of its research documents for commercial purposes. For information on reprint and reuse permissions, please visit

RAND is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND's publications do not necessarily reflect the opinions of its research clients and sponsors.