IP addresses in Cyber Security
Vol.6,No.12(2015)
Cyber Security Response Teams (CSIRT/CERT) are processing information onthe course of protection of information networks. IP addresses of devices involved in the security incidents are the key element for traffic analysis and othertechniques used for investigation of incidents. In the first part, this article summarises and briefly describes the function of CSIRT teams. An analysis of "personal data" is provided in the second part of the article. It reaches the de legelata conclusion that IP addresses are personal data. Therefore, CSIRT teams fallwithin the scope of the directive 95/46/EC and have to fulfil all the dutiesprescribed for data controllers. The third part of this article discusses way toachieve lawful processing of personal data and further explores the possibility touse the legitimate interest of the controller or a third party for this purpose.
Personal Data Protection; Cyber Security; Personal Data Processing; LegitimateInterest of Data Controller; CSIRT
s. 21–42
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
Copyright © 2015 Jakub Míšek, Jakub Harašta