IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

Telecommunications Telecommunications System (Private Branch Exchange, PBX)<br />

_________________________________________________________________________________________<br />

Force Majeure<br />

- T 1.4 Fire<br />

- T 1.7 Inadmissible temperature and humidity<br />

Organisational shortcomings:<br />

- T 2.6 Unauthorised admission to rooms requiring protection<br />

Human Failure:<br />

- T 3.6 Hazards posed by cleaning staff or outside staff<br />

- T 3.7 Failure of the PBX due to operating errors<br />

Technical Failure:<br />

- T 4.6 Voltage variations / overvoltage / undervoltage<br />

Deliberate Acts:<br />

- T 5.1 Manipulation/destruction of <strong>IT</strong> equipment or accessories<br />

- T 5.11 Loss of confidentiality of data stored in PBX installations<br />

- T 5.12 Interception of telephone calls and data transmissions<br />

- T 5.13 Eavesdropping of rooms<br />

- T 5.14 Call charges fraud<br />

- T 5.15 "Inquisitive" staff members<br />

- T 5.16 Threat posed by internal staff during maintenance/administration work<br />

- T 5.17 Threat posed by external staff during maintenance work<br />

- T 5.44 Abuse of Remote Access Ports for Management Functions of Private Branch<br />

Exchanges<br />

Here, consideration is given to those threats which may impair the functioning of an institution. Thus,<br />

the focus is not on legal data privacy aspects. <strong>The</strong>se are already covered, for a major part, by existing<br />

operating agreements and/or service agreements. Nevertheless, <strong>IT</strong> baseline protection does, of course,<br />

also contribute to the protection of person-related data.<br />

Recommended Countermeasures (S)<br />

For the implementation of <strong>IT</strong> baseline protection, selection of the required packages of safeguards<br />

("modules") as described in chapters 2.3 and 2.4, is recommended.<br />

<strong>The</strong> central devices of a PBX facility should be installed in a room which meets the requirements laid<br />

down for a server room (Chapter 4.3.2), or for a technical infrastructure room (Chapter 4.3.4). For<br />

provision of a PBX with cables, see Chapter 4.2.<br />

In the following, the safeguard group "Private Branch Exchange" is set out:<br />

_________________________________________________________________________________________<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Otober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!