IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

Other <strong>IT</strong> Components Standard software<br />

_________________________________________________________________________________________<br />

Organisation:<br />

- S 2.9 (2) Ban on using non-approved software<br />

- S 2.10 (2) Survey of the software held<br />

- S 2.35 (1) Obtaining information on security weaknesses of the system<br />

- S 2.40 (2) Timely involvement of the staff/factory council<br />

- S 2.66 (2) <strong>The</strong> importance of certification for procurement<br />

- S 2.79 (1) Determining responsibilities in the area of standard software<br />

- S 2.80 (1) Drawing up a requirements catalogue for standard software<br />

- S 2.81 (1) Preselection of a suitable standard software product<br />

- S 2.82 (1) Developing a test plan for Standard Software<br />

- S 2.83 (1) Testing Standard Software<br />

- S 2.84 (1) Deciding on and developing the installation instructions for standard software<br />

- S 2.85 (1) Approval of standard software<br />

- S 2.86 (2) Guaranteeing the integrity of standard software<br />

- S 2.87 (2) Installation and configuration of standard software<br />

- S 2.88 (2) Licence management and version control of standard software<br />

- S 2.89 (3) De-installation of standard software<br />

- S 2.90 (2) Checking delivery<br />

Personnel:<br />

- S 3.4 (1) Training before actual use of a program<br />

Hardware & Software:<br />

- S 4.34 (2) Using encryption, checksums or digital signatures (optional)<br />

- S 4.78 (2) Careful modifications of configurations<br />

Contingency Planning:<br />

- S 6.21 (3) Backup copy of the software used (optional)<br />

�<br />

<strong>The</strong> following essential steps must also be taken for databases:<br />

1. Determining the requirements to be fulfilled by the database software.<br />

First prepare a requirements catalogue to allow the selection of a suitable standard database<br />

software (S 2.80 and S 2.124).<br />

2. Training administrators<br />

Before the database software is used in a productive environment, the responsible administrators<br />

must be trained (S 3.11). If possible, this should be done before procuring the software package.<br />

3. Design a database concept<br />

_________________________________________________________________________________________<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Otober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!