The IT Baseline Protection Catalogs, or IT-Grundschutz-Kataloge are a collection of documents from the German Federal Office for Security in Information. @misc{BSI, added-at = {T+}, author = {für Sicherheit in der Informationstechnik, Bundesamt}, biburl. IT-Grundschutz-Kataloge. 2 likes. Book. IT-Grundschutz-Kataloge. Book. 2 people like this topic. Want to like this Page? Sign up for Facebook to get started.

Author: Kigul Dour
Country: Zimbabwe
Language: English (Spanish)
Genre: History
Published (Last): 22 August 2007
Pages: 266
PDF File Size: 8.17 Mb
ePub File Size: 10.49 Mb
ISBN: 989-7-81557-546-4
Downloads: 17801
Price: Free* [*Free Regsitration Required]
Uploader: Mikanris

The component catalogs, threat catalogs, and the measures catalogs follow these introductory sections. The first layer is addressed to managementincluding personnel and outsourcing. The given threat situation is depicted kayaloge a short description of the component examining the facts.

System administrators cover the third layer, looking at the characteristics of IT systems, including clientsservers and private branch exchanges or fax machines. In katalge process, classification of measures into the categories A, B, C, and Z is undertaken. Individual threat sources are described briefly. Finally, a serial number within the layer identifies the element.

An itemization of individual threat sources ultimately follows. By using this site, you agree to the Terms of Use and Privacy Policy. The following layers are formed: After a complete depiction, individual measures are once again collected into a list, which is trundschutz according to the measures catalog’s structure, rather than that of the life cycle.

During realization of measures, personnel should verify whether adaptation to the operation in question is necessary; any deviations from the initial measures should be documented for future reference. In the process, layers are used for structuring individual measures groups. The collection encompasses over pages, ut the introduction and catalogs. Degrees of realization, “considerable”, “yes”, “partial”, and “no”, are distinguished.


IT Baseline Protection Catalogs

If notability cannot be established, the article is likely to be mergedredirectedor deleted. Finally, the realization is terminated and a manager is named.

Federal Office for Security in Information Technology, version. Baseline protection does, however, demand an understanding of the measures, as kata,oge as the vigilance of management. IT- Grundschutz The aim of IT- Grundschutz is to achieve an appropriate security level for all types of information of an organisation.

BSI – IT-Grundschutz Catalogues

Both components must be successfully implemented to guarantee the system’s security. The second is addressed to in-house technicians, regarding structural aspects in the infrastructure layer.

BundesanzeigerCologne This page was last edited on 29 Septemberat Finally, control questions regarding correct realization are given. Each individual component follows the same layout. Here you can also find the Baseline Protection Guide, containing support functions for implementing IT baseline protection in procedural detail. Grundschuttz text follows the facts of the life cycle in question and includes planning and design, acquisition if necessaryrealization, operation, selection if necessaryand preventive measures.

In this way, a kayaloge level can be katxloge, viewed as adequate in most cases, and, consequently, replace the more expensive risk assessment. Views Read Edit View history. The fourth layer falls within the network administrators task area. This approach is very time-intensive and very expensive.


Please help to establish notability by citing reliable secondary sources that are independent of the topic and provide significant coverage of it beyond a mere trivial mention. The detection and assessment of weak points in IT systems often occurs by way of a risk assessmentwherein a threat potential is assessed, and grindschutz costs of damage to the system or group of similar systems are investigated individually.

Category A measures for the entry point into the subject, B measures expand this, and category C is ultimately necessary for grundscchutz protection certification. Federal Office for Security in Information Technology. The conclusion consists of a cost assessment.

In many areas, IT- Grundschutz even provides advice for IT systems and applications requiring a high level of protection. In cases in which security needs are greater, such protection can be used as a basis for further action. Katloge is followed by the layer number affected by the element.

A detailed description of the measures follows. Retrieved from ” https: In this way, a network of individual components arises in the baseline protection catalogs.

Besides the forms, the cross-reference tables another useful supplement. According to the BSI, the knowledge collected in these catalogs is not necessary to establish baseline protection.

These present supplementary information.