Exchanging Email with US-CERT
Sending email to US-CERT
When sending sensitive information to US-CERT via email, we encourage you to encrypt your messages. US-CERT uses multiple public keys based upon their purpose. If the purpose of your communication is a cyber security incident report, vulnerability report, or any other technical question related to cyber security, please use the following key:
Key ID: 0xE422159E Key Type: RSA Expires: 2008-10-01 Key size: 2048 Fingerprint: 14E1 EB7E 614F 748A C3D4 232F B1BD A92F E422 159E Information about other keys can be found on Contacting US-CERT.
Receiving publications in email from US-CERT
US-CERT signs the email distribution of all US-CERT publications, including Cyber Security Alerts, Technical Cyber Security Alerts, Cyber Security Bulletins and Cyber Security Tips with the following key:
Key ID: 0x3E1F88AB Key Type: RSA Expires: 2009-10-01 Key Size: 2048 Fingerprint: E0BF 6D0E 88C1 1FFC F93F 571B 7207 9633 3E1F 88AB
Verifying key authenticity
As a good security practice, users should be sure to validate public keys they receive and not trust unvalidated keys. Forged or expired keys may be found on public key servers. It is important to validate your copy of the US-CERT public keys to insure they are legitimate. You can verify the fingerprints of the keys shown above by contacting the US-CERT hotline at: +1 888-282-0870. Note: You can also verify the US-CERT Master Key-signing key signature on the keys listed above. We have generated an US-CERT master key that we use only as a key-signing key. Use this master key only for verifying other US-CERT keys:
Key Type: RSA Expires: 2008-09-14 Fingerprint: CF03 0DC0 2D86 FA86 D4F6 7D6D 9265 B029 D015 08CC User ID: US-CERT Master Key-signing Key (signing only) |
Information For
Sign Up
Reporting
DHS Threat Advisory
The threat level in the airline sector is High or Orange. Read more