For Information Purposes Only.

Infosec Standard No.3 ‘Connecting Business Domains’, indicated the general type of threats which are likely should domains be connected together. It also indicated the type of countermeasures which might be appropriate, but does not give definitive guidance on designing a secure network or interconnections.

A historic example of a documented interconnected system is the GSi with its GSi Code of Connection (CoCo). Authored and administered by NISCC, the CoCo requires connecting organisations to prove that they meet a baseline set of requirements. A level of assurance is reached by the fact that the countermeasures and risk management decisions employed by connecting organisations are standardised throughout the GSi community. Infosec Standard No. 1 ‘Residual Risk Assessment Method’, makes specific reference to the fact that before a risk management.

For more information from CESG, please visit www.cesg.gov.uk

Extracts taken from HMG Documentation. © Parts of this document are copyright, reserved and vested in the Crown.