August 3, 2019 posted by

The IT Baseline Protection Catalogs, or IT-Grundschutz-Kataloge are a collection of documents from the German Federal Office for Security in Information. @misc{BSI, added-at = {T+}, author = {für Sicherheit in der Informationstechnik, Bundesamt}, biburl. IT-Grundschutz-Kataloge. 2 likes. Book. IT-Grundschutz-Kataloge. Book. 2 people like this topic. Want to like this Page? Sign up for Facebook to get started.

Author: Doulmaran Kajigal
Country: Tajikistan
Language: English (Spanish)
Genre: Art
Published (Last): 12 March 2018
Pages: 384
PDF File Size: 7.28 Mb
ePub File Size: 17.29 Mb
ISBN: 802-6-86709-906-6
Downloads: 50192
Price: Free* [*Free Regsitration Required]
Uploader: Karr

To keep each component as compact as possible, global aspects are collected in one component, while more specific information is collected into a second.

Each measure is named and its degree of realization determined. A detailed description of the measures follows. To familiarize the user with the manual itself, it contains an introduction with explanations, the approach to IT baseline protection, a series of concept and role definitions, and a glossary. The necessary measures are presented in a text with short illustrations.

If the measures’ realization is not possible, reasons for this are entered in the adjacent field for later traceability.

Federal Office for Security in Information Technology, version. After a complete depiction, individual measures are once again collected into a list, which is arranged according to the measures catalog’s structure, rather than that of the life cycle. The fifth within that of the applications administrator and the IT user, concerning software like database management systemse-mail and web servers.

IT- Grundschutz The aim of IT- Grundschutz is to achieve an appropriate security level for all types of information of an organisation.


IT Baseline Protection Catalogs

In the process, layers are used for structuring individual measures groups. You will find in the IT- Grundschutz Catalogues the modules, threats and safeguards. Retrieved from ” https: In cases in which security needs are greater, such protection can be used as a basis for further action.

According to the BSI, the knowledge collected in these catalogs is not necessary to establish baseline protection. The respective measures or threats, which are introduced in the component, can also be relevant for other components. Languages Deutsch Italiano Edit links.

Partitioning into layers clearly isolates personnel groups impacted by a given layer from the layer in question. In this way, a network of individual components arises in the baseline protection catalogs. This publication does not intend to make managers into security experts. In the process, classification of measures into the categories A, B, C, and Z is undertaken.

Federal Office for Security in Information Technology. These present supplementary information. Finally, examples of damages that can grundscuhtz triggered by these threat sources are given. A table summarizes the measures to be applied for individual components in this regard.

IT baseline protection protection encompasses standard security measures for typical IT systems, with normal protection needs. This is followed by the layer number affected by the element. They summarize the measures and most important threats for individual components.

BSI – IT-Grundschutz – IT-Grundschutz International

The conclusion consists of a cost kataoge. This page was last edited on 29 Septemberat Both components must be successfully implemented to guarantee the system’s security. Category A measures for the entry point into the subject, B measures expand this, and category C is ultimately necessary for baseline protection certification. The measures catalogs summarize kayaloge actions necessary to achieve baseline protection; measures appropriate for several system components are described centrally.


However, the cross-reference tables only cite the most important threats. Each catalog element is identified by an individual mnemonic laid out according to the following scheme the catalog groups are named first. BundesanzeigerCologne During realization of measures, personnel should verify whether adaptation to the operation in question is necessary; any deviations from the initial measures should be documented for future reference.

If the measure cited for a given threat is not applicable for the grunxschutz IT system, it is not superfluous.

Baseline protection does, however, demand an understanding of the measures, as well as the vigilance of management. Finally, a serial number within the layer identifies the element.

BSI-Grundschutz Katalog | BibSonomy

If notability cannot be established, the article is likely to be mergedredirectedor deleted. The first layer is addressed to managementincluding personnel and outsourcing. In many areas, IT- Grundschutz even provides advice for IT systems and applications requiring a high level of protection.

Managers are initially named to initiate and realize the kagaloge in the respective measures description.