4
Marty Gillespie (mgg@dnaco.net)
Incident
Response Goals
•The goal of
the incident handler is to limit damage, and maximize the
capability to recover
–Restrict the scope of
the incident
–Collect information in
a manner suitable for use in returning system(s) to full use
–Proceed in a manner
unlikely to cause further damage