| CARVIEW |
Select Language
HTTP/2 200
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=3600
content-encoding: gzip
content-security-policy: default-src 'none'; style-src 'self' 'unsafe-inline' https:; img-src 'self' https: data:; font-src 'self'; script-src 'nonce-OEd9RumWLl14nplOJW0tEA' 'strict-dynamic' 'self' 'unsafe-eval'; form-action 'self'; media-src 'self' *.first.org; connect-src 'self' *.first.org; object-src 'none'; frame-src https:; frame-ancestors 'self'; base-uri 'self'
last-modified: Mon, 23 Jun 2025 03:58:12 GMT
referrer-policy: same-origin
server: nginx
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
accept-ranges: bytes
age: 0
date: Mon, 06 Oct 2025 08:41:49 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210050-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1759740108.785474,VS0,VE1323
vary: accept-encoding, Accept-Encoding
strict-transport-security: max-age=31557600
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7309
FIRST Standards Committee
- About FIRST
- Mission Statement
- Strategy Framework
- History
- Sustainable Development Goals
- Organization
- FIRST Policies
- Anti-Corruption Policy
- Antitrust Policy
- Bylaws
- Board duties
- Bug Bounty Program
- Code of Conduct
- Conflict of Interest Policy
- Document Record Retention and Destruction Policy
- FIRST Press Policy
- General Event Registration Refund Policy
- Guidelines for Site Selection for all FIRST events
- Identity & Logo Usage
- Mailing List Policy
- Media Policy
- Privacy Policy
- Registration Terms & Conditions
- Services Terms of Use
- Standards Policy
- Statement on Diversity & Inclusion
- Translation Policy
- Travel Policy
- Uniform IPR Policy
- Whistleblower Protection Policy
- Partnerships
- Newsroom
- Procurement
- Jobs
- Contact
- Membership
- Initiatives
- Special Interest Groups (SIGs)
- SIGs Framework
- Academic Security SIG
- AI Security SIG
- Automation SIG
- Cybersecurity Communications SIG
- Common Vulnerability Scoring System (CVSS-SIG)
- CSIRT Framework Development SIG
- Cyber Insurance SIG
- Cyber Threat Intelligence SIG
- Curriculum
- Introduction
- Introduction to CTI as a General topic
- Methods and Methodology
- Priority Intelligence Requirement (PIR)
- Source Evaluation and Information Reliability
- Machine and Human Analysis Techniques (and Intelligence Cycle)
- Threat Modelling
- Training
- Standards
- Glossary
- Communicating Uncertainties in CTI Reporting
- Webinars and Online Training
- Building a CTI program and team
- Curriculum
- Detection Engineering & Threat Hunting SIG
- Digital Safety SIG
- DNS Abuse SIG
- Stakeholder Advice
- Detection
- Cache Poisoning
- Creation of Malicious Subdomains Under Dynamic DNS Providers
- DGA Domains
- DNS As a Vector for DoS
- DNS Beacons - C2 Communication
- DNS Rebinding
- DNS Server Compromise
- DNS Tunneling
- DoS Against the DNS
- Domain Name Compromise
- Dynamic DNS (as obfuscation technique)
- Fast Flux (as obfuscation technique)
- Infiltration and exfiltration via the DNS
- Lame Delegations
- Local Resolver Hijacking
- Malicious registration of (effective) second level domains
- On-path DNS Attack
- Stub Resolver Hijacking
- Detection
- Code of Conduct & Other Policies
- Examples of DNS Abuse
- Stakeholder Advice
- Ethics SIG
- Exploit Prediction Scoring System (EPSS)
- FIRST Multi-Stakeholder Ransomware SIG
- Human Factors in Security SIG
- Industrial Control Systems SIG (ICS-SIG)
- Information Exchange Policy SIG (IEP-SIG)
- Information Sharing SIG
- Law Enforcement SIG
- Malware Analysis SIG
- Metrics SIG
- NETSEC SIG
- Public Policy SIG
- PSIRT SIG
- Red Team SIG
- Security Lounge SIG
- Security Operations Center SIG
- Threat Intel Coalition SIG
- Traffic Light Protocol (TLP-SIG)
- Transportation and Mobility SIG
- Vulnerability Coordination
- Vulnerability Reporting and Data eXchange SIG (VRDX-SIG)
- Women of FIRST
- CCB Initiatives
- FIRST CORE
- Internet Governance
- IR Database
- Fellowship Program
- Mentorship Program
- IR Hall of Fame
- Victim Notification
- Volunteers at FIRST
- Previous Activities
- Special Interest Groups (SIGs)
- Standards & Publications
- Events
- Education
- Blog
FIRST Standards Committee
Mission
Effective, interoperable, and ubiquitous standards are a key element in FIRST’s mission, especially towards the pillar of “Global Language - Incident responders around the world speak the same language and understand each other’s intents and methods.” The systems that underpin our digital world are increasingly diffuse and cross-border in nature, hence we need effective standards to increase public safety by supporting cross-border incident response coordination. Effective, understandable, reality-based standards serve to increase professionalization within the field of cybersecurity.
The FIRST standards committee brings together people from around the world, all experienced with technical standards development, able to bridge between the FIRST community and exterior standards bodies. This committee provides a single point of contact for external standards bodies to be able to perform a reality check, to avoid the outcome that we as practitioners become liable for conforming to non-working, ineffective, conflicting, and/or outdated standards. This committee serves as a resource for the FIRST SIGs to help increase the quality, visibility, and uptake of FIRST standards.
Goals
- Provide a single point of contact for FIRST SIGs seeking guidance in their standards-defining work.
- Provide a clearly defined path for FIRST standards to be formally recognized by external standards development organizations, and to help drive more effective adoption of FIRST's own cybersecurity standards.
- Define mechanisms and policies to provide a trusted contact point for handling potential vulnerabilities in FIRST standards.
- Establish (and strengthen existing) liaison relationships with external standards definition organizations to ensure that our collective real-world experience as cybersecurity professionals is reflected in key standards touching upon our work.
- Inform the FIRST community of emerging standardization efforts likely to impact upon our work, and to serve as a conduit for the FIRST community to provide feedback on draft standards being developed externally.
Deliverables
- Recurring community calls
- Regular standards updates communicated to the FIRST teams list
- Standards development policies, templates, procedures for FIRST SIGs
- Maintaining formal liaison relationships with external SDOs
Initial chairs
| Name | Team affiliation |
|---|---|
| Trey Darley | Accenture |
| Brian DeWyngaert | CISA |
| Jason Keirstead | Liaison |
| Warren Kumari | |
| Shawn Richardson | NVIDIA |
Initial members
| Name | Team affiliation |
|---|---|
| Carlos Alvarez | ICANN |
| Vinay Bansal | Cisco Systems |
| Vilius Benetis | NRD CIRT |
| Trey Darley | Accenture |
| Brian DeWyngaert | CISA |
| Alexandre Dulaunoy | CIRCL |
| Jean-Robert Hountomey | Liaison |
| Aaron Kaplan | Liaison |
| Jason Keirstead | Liaison |
| Koichiro "Sparky" Komiyama | JPCERT/CC |
| Warren Kumari | |
| Peter Lowe | Liaison |
| Art Manion | Liaison |
| Tom Millar | CISA |
| Damir "Gaus" Rajnovic | Panasonic CSIRT EU |
| Shawn Richardson | NVIDIA |
| Desirée Sacher-Boldewin | Liaison |
| Jonathan Spring | CISA |
| Thomas Schreck | Liaison |
| Laurie Tyzenhaus | CERT/CC |
| Jeroen van der Ham | Liaison |
- About FIRST
- Mission Statement
- Strategy Framework
- History
- Sustainable Development Goals
- Organization
- FIRST Policies
- Anti-Corruption Policy
- Antitrust Policy
- Bylaws
- Board duties
- Bug Bounty Program
- Code of Conduct
- Conflict of Interest Policy
- Document Record Retention and Destruction Policy
- FIRST Press Policy
- General Event Registration Refund Policy
- Guidelines for Site Selection for all FIRST events
- Identity & Logo Usage
- Mailing List Policy
- Media Policy
- Privacy Policy
- Registration Terms & Conditions
- Services Terms of Use
- Standards Policy
- Statement on Diversity & Inclusion
- Translation Policy
- Travel Policy
- Uniform IPR Policy
- Whistleblower Protection Policy
- Partnerships
- Newsroom
- Procurement
- Jobs
- Contact