To exchange timely information between security personnel in charge of security of Internet systems, of all Israeli companies, government and public sector agencies, military, academia, Internet Service Providers on the matter of Internet security.
The exchange of all information (whether in cleartext or encrypted) will be via an unmoderated, archived, Listserv list operated by the Internet Society of Israel (ISOC-IL). To post to the list send email to: isief@cert.org.il. The archives of all postings to the list can be found here.
No reporter will be allowed to be subscribed to the list. Any company found to be passing information to newspapers or reporters whether in Israel or abroad, will be removed from the list for a period of one year. Information posted to the list can be redistributed to immediate internal users or customers, unless otherwise specified by a "do not redistribute" attached to the email.
If information is placed on the list about a known attack or a soon to take place attack (whether it be on web sites, servers, routers or Internet infrastructure), that information can be relayed only to the affected party under the condition that the submitter of the information to the list has not listed any restriction on the dissemination of the information. Information which has originated on English or Hebrew language public forums can be redistributed as long as the original public forum is specified as the source of the information.
Any potential member that wishes to join the ISIEF must first be sponsored by an existing member. The member being sponsored must describe who they are, what they do in the realm of Internet security and must identify the exact member or members they wish to have added to the ISIEF list. Send that information along with a completed user template (see next section) to isief@cert.org.il. The individual member must show their involvement in security aspects, examples being showing past postings to various security related lists; a PGP key; or anything else that would prove to the existing members that the person involved is a qualified individual in the realm of security.
New members will be accepted via a voting by the existing organizational members of ISIEF. One vote will be accepted from each organizational member. Acceptance is via 3 YES votes. If any NO vote is cast, then the ratio of YES votes to NO votes must be at least 2:1, with a minimum of 3 YES votes cast.
To remove an existing ISIEF member, the person requesting to remove an existing user would have to document the reasons for removal and the person being removed would be allowed to post a rebuttal within 72 hours and then the voting would commence. Voting would require 6 YES votes to remove an existing member, and if any NO votes are cast, then the ratio of YES votes to NO votes must be at least 3:1, with a minumum of 6 YES votes cast.
Voting terminates for either adding new members or the removal of existing members after 30 days or when a quorom is reached, whichever arrives first.
All organizations must specify by name the exact person who has the ability to vote on their behalf.
A web page will be established that will contain the following info of every ISIEF member. The following info will be included:
Note: for email address above, the address must be located on a server inside Israel and may not be any sort of free mass email system like Hotmail or Yahoo.
Encryption, when needed, will be via PGP. The forum password will be changed every quarter and distributed in PGP format to all those listed in the forum.
This page is maintained by Hank Nussbacher (hank@interall.co.il).