Guidelines for the Use of "CERT"

Our licensing effort and usage guidelines are designed to help us protect and strengthen the “CERT” brand and reinforce its value for organizations that we have licensed to use it.

Do not define CERT as an acronym.
Although CERT was once an acronym, “CERT” has been a registered mark owned by Carnegie Mellon University since 1997. Organizations that we have licensed to use the CERT® mark may use it in both their short and long names.

The following are examples of acceptable use:

  • Short name: <company abbreviation> CERT
  • Long name: <full company name> CERT

Note that certain name configurations are reserved for authorized national CSIRTs.

Do not use “CERT” as a generic term to refer to a category of organizations.
Use the term “computer security incident response teams (CSIRTs)” when referring to organizations that perform these kinds of activities. Many organizations incorporate this term in the description of their services.

The following are examples of acceptable use:

  • <name> is the computer security incident response team (CSIRT) for <organization, sector, or country>.
  • <name> works closely with other computer security incident response teams (CSIRTs) around the world.

Additional Information

The following resources offer additional information about the use of CERT.

Send Us Your Feedback

Let us know if you have questions or comments about the proper ways to use CERT in your materials.

Contact Us