What is a WARP?

A WARP (Warning, Advice and Reporting Point) is a community-based service where members can receive and share up-to-date advice on information security threats, incidents and solutions. Detailed information can be found at http://www.warp.gov.uk/

WARPs for The Public Sector
A WARP is set up to provide a service to members of a particular community, usually of between 20 and 100 members (in order to preserve a personal community feel). It is run by a WARP operator who uses a website, email, telephone, SMS, and occasional meetings (where possible) to offer a personalised service of information security warnings and advice to the members. The operator will: The creation of WARPs in Public Sector communities, where people work together and share information on threats, incidents and solutions, can address many of these problems very cost effectively. WARPs are also being promoted by the UK Government’s Centre for Protection of the National Infrastructure - CPNI (http://www.cpni.gov.uk/), since they contribute to the overall reduction of ICT vulnerabilities.

CESG is actively supporting Public Sector WARPs as part of their GovCertUK (http://www.govcertuk.gov.uk) role. The intent is to use WARPs as a means of disseminating warnings and advisories, taking advantage of a WARP being a trusted community of the most appropriate people who can act on this information. Working with this trusted community, GovCertUK would support remedial activity arising from incident reports.

There are currently 6 Public Sector WARPs running in various parts of the country, please see the WARP register (http://www.warp.gov.uk/Index/WARPRegister/indexcurrentwarps.htm) for a current list.

If you are a Public Sector organisation and not a member of a WARP please contact: enquiries@warp.gov.uk. You will then be advised if there is an active Public Sector WARP in your area and, if not, assistance can be given in setting up a trial.

GovCertUK Guidance for WARP's - 71k