IT Baseline Protection Manual - The Information Warfare Site

Non-Networked Systems and Clients IT-Security Management
_________________________________________________________________________________________
Force Majeure
- T 1.1 Loss of personnel
- T 1.2 Failure of the IT system
- T 1.4 Fire
- T 1.5 Water
- T 1.8 Dust, soiling
Organisational shortcomings
- T 2.7 Unauthorised use of rights
- T 2.9 Poor adjustment to changes in the use of IT
- T 2.15 Loss of confidentiality of sensitive data in the UNIX system
Human Failure
- T 3.2 Negligent destruction of equipment or data
- T 3.3 Non-compliance with IT security measures
- T 3.5 Inadvertent damaging of cables
- T 3.6 Hazards posed by cleaning staff or outside staff
- T 3.8 Improper use of the IT system
- T 3.9 Improper IT system administration
Technical Failure
- T 4.1 Disruption of power supply
- T 4.6 Voltage variations / overvoltage / undervoltage
- T 4.7 Defective data media
- T 4.8 Discovery of software vulnerabilities
- T 4.11 Lack of authentication possibilities between NIS Server and NIS Client
- T 4.12 Lack of authentication possibilities between X Server and X Client
Deliberate Acts
- T 5.1 Manipulation or destruction of IT equipment or accessories
- T 5.2 Manipulation of data or software
- T 5.4 Theft
- T 5.7 Line tapping
- T 5.8 Manipulation of lines
- T 5.9 Unauthorised use of IT systems
- T 5.18 Systematic trying-out of passwords
- T 5.19 Abuse of user rights
- T 5.20 Abuse of Administrator rights
- T 5.21 Trojan horses
_________________________________________________________________________________________
IT-Baseline Protection Manual: Otober 2000