IT Baseline Protection Manual - The Information Warfare Site

Telecommunications LAN connection of an IT system via ISDN
_________________________________________________________________________________________
Infrastructure:
- S 1.43 (2) Secure siting of ISDN routers
Organisation:
- S 2.4 (2) Maintenance/Repair Regulations
- S 2.9 (2) Ban on Using Non-Approved Software
- S 2.35 (2) Obtaining information on security weaknesses of the system
- S 2.42 (1) Determination of potential communications partners
- S 2.46 (2) Appropriate key management
- S 2.64 (2) Checking the log files
- S 2.106 (2) Purchase of suitable ISDN cards
- S 2.107 (2) Documentation of the configuration of ISDN cards
- S 2.108 (2) Relinquishment of remote maintenance of ISDN gateways (optional)
- S 2.109 (1) Assigning rights for remote access
- S 2.204 (1) Prevention of insecure network access
Personnel:
- S 3.4 (1) Training before actual use of a program
- S 3.5 (1) Education on IT security measures
Hardware and software:
- S 4.7 (1) Change of preset passwords
- S 4.34 (1) Using encryption, checksums or digital signatures (optional)
- S 4.59 (1) Deactivation of ISDN board functions which are not required
- S 4.60 (1) Deactivation of ISDN router functions which are not required
- S 4.61 (1) Use of security mechanisms offered by ISDN components
- S 4.62 (2) Use of a D-channel filter (optional)
Communications:
- S 5.29 (2) Periodic checks of destination addresses and logs
- S 5.32 (1) Secure use of communications software
- S 5.47 (1) Configuration of a Closed User Group (optional)
- S 5.48 (1) Authentication via CLIP/COLP
- S 5.49 (1) Callback based on CLIP/COLP
- S 5.50 (1) Authentication via PAP/CHAP
_________________________________________________________________________________________
IT-Baseline Protection Manual: Otober 2000