Navigation and service

BSI - Federal Office for Information Security (Link to homepage)

BSI -- standards for Internet security (ISi series)

The ISi series (BSI -- standards for Internet security) provides specific technical recommendations on various IT security issues.

IPv6 guideline

IPv6 must not be neglected any further. The IPv6 guideline explains how to tackle this issue.

Keywords: IPv6, management

Secure connection of local networks to the Internet (ISi-LANA)

ISi-LANA provides recommendations for setting up and structuring local area networks (LAN) and their secure Internet connection via a security gateway. The recommendations also take IPv6 into account.

Keywords: IPv6, LAN, security gateway, firewall, network, DMZ, packet filter, application layer gateway (ALG)

Secure remote access to the internal network (ISi-Fern)

Employees on business trips or working from home need to access the local company network via the Internet. ISi-Fern provides recommendations on the technical implementation of remote access.

Keywords: VPN, terminal server, proxy server, e-mail synchronisation, mobile working, mobile devices

Providing secure web offerings (ISi-Web-Server)

Many services are made available as web offerings on the Internet. ISi-Web-Server provides recommendations for setting up and operating your own web offerings.

Keywords: Content Management System (CMS), HSTS, web server, web application, authentication (cookies, session tokens, certificates)

Secure operation of e-mail servers (ISi-Mail-Server)

E-mail remains an indispensable communication channel in the workplace. The ISi-Mail-Server study provides recommendations on operating your own e-mail server.

Keywords: spam, phishing, greylisting, IMAP, POP, SMTP, DKIM, SPF

Securing a server (ISi-Server)

Servers form the backbone of the IT landscape: web, mail, DNS, database and file servers are just the most common examples. ISi-Server gives basic recommendations for securing and hardening servers without going into detail about the respective applications.

Keywords: virtualisation, hardening, minimal system, network storage (NAS, SAN), hardware management

Secure use of web offerings (ISi-Web-Client)

Web applications are popular attack targets because they are visited by vast numbers of users. ISi-Web-Client gives specific technical recommendations on how to use web offerings securely.

Keywords: HTML5, Javascript, active content, browser, ReCoBS

Secure use of e-mail (ISi-Mail-Client)

Keywords: spam, phishing, worms, viruses, IMAP, POP, S/MIME, PGP

ISi modules no longer available

The following ISi modules are now outdated and are not currently being updated:

  • Internet security: introduction, basics, procedures (ISi-E)
  • Securing a PC client (ISi-Client)
  • Secure Internet telephony (ISi-VoIP)
  • Secure virtual private networks (ISi-VPN)
  • Secure WLAN (ISi-WLAN)

Contact

If you have any questions, suggestions or requests for further ISi-studies, please feel free to contact isi-redaktion@bsi.bund.de.

Similar topics

Back to Companies and organisations