WARPs Introduction

What is a WARP?

A WARP is a community based service where members can receive and share up-to-date advice on information security threats, incidents and solutions.

Why are WARPs needed?

• There is a huge daily volume of security information generated to help protect IT systems. Keeping on top of this information is time consuming and often a luxury some cannot afford.
• Community members often lack the opportunity to share best practice and advice despite common needs.
• Lack of trust inhibits the sharing of sensitive information about problems with attacks on their IT systems.
• Solutions to some of these problems exist but can be costly.

Why are WARPs effective?

• WARPs deliver customised early warnings.
• WARP members exchange advice and best practice within the community.
• A WARP provides a trusted environment for sharing incident reports.
• WARPs provide the above cost-effectively.

What does a WARP do?

A WARP is set up to provide a service to members of a community. It is run by a WARP operator who understands the information security needs of its members.The operator will:

• filter relevant information and deliver it to the community;
• facilitate the sharing of advice and best practice within the members of that community. This will help build trust within the community thereby encouraging members to report incidents to each other;
• anonymise these reports and may share them with other WARPs.

Who runs the WARP programme?

The WARP programme is part of the Information Sharing Strategy of the CPNI (Centre for the Protection of the National Infrastructure- www.cpni.gov.uk).

The WARPs explained page describes the three services which WARPs can offer.