se of a web browser typically involves some data being accessed from non-trusted sources. This data can contain harmful code (viruses, trojans, spyware, etc. and infect a workplace PC undetected, so that secure operation of the computer is no longer guaranteed. This can lead to the loss of the availability, confidentiality and integrity of data requiring protection. The use of web browsers therefore involves specific risks. Implementing and conforming to this minimum standard is intended to minimise these risks.

This minimum standard describes security requirements for web browsers that are deployed on workplace PCs in the Federal Administration. These requirements must be maintained in order to achieve a minimum level of information security.

Update 2022: the Federal Office for Security in Information Technology (BSI) is currently working on a new version of the minimum standard for web browsers. A community draft has been published with an invitation to comment. Until 19 August 2022 numerous responses were submitted. This feedback is an important part of the quality assurance of the minimum standard. They help to ensure that the content is up-to-date and practical. After review and evaluation of the comments and further internal BSI coordination, the final version 3.0 of the revised minimum standard will be made available for download here.

Download minimum standard (only available in German)

Mindeststandard des BSI nach § 8 Abs. 1 Satz 1 BSIG für Web-Browser

Download browser comparison table (only available in German)

Abgleichtabelle von Web-Browsern mit dem Mindeststandard für Web-Browser

Download IT-Grundschutz reference table (only available in German)

IT-Grundschutz-Referenztabelle zum Mindeststandard des BSI nach § 8 Abs. 1 Satz 1 BSIG für Web-Browser (IT-Grundschutz-Kompendium – Edition 2020)