6.1 Server-supported network

Description

Here, we deal with a local network with at least one server. The clients can be PCs with or without a hard disk (as described in chapter 5.1), also Unix-workstations or terminals. This chapter offers an overview of the typical threats and IT security safeguards for a local network. However, the overview does not take the network operating system or the client's operating system into account. In this context, please refer to the supplementary chapters of the IT-baseline protection manual (e.g. chapter 6.2 Networked Unix systems).

Threat Scenario

The following typical threats (T) are assumed as regards IT baseline protection of a server-supported network:

Force Majeure:

Organisational Shortcomings:

Human Failure:

Technical Failure:

Deliberate Acts:

Recommended Countermeasures (S)

For the implementation of IT baseline protection, selection of the required packages of safeguards ("modules") as described in chapters 2.3 and 2.4, is recommended.

In the following, the safeguard group "Server-supported Network" is presented.

It is required that the server be located in either a server room (see chapter 4.3.2) or a protective cabinet (see chapter 4.4). The safeguards to be implemented for the network operating system are contained in the supplementary chapters of the manual. This also applies to connected clients.

In addition, the following measures will have to be taken:

Infrastructure:

Organisation:

Personnel:

Hardware/Software:

Communications:

Contingency Planning:


© Copyright by Bundesamt für Sicherheit in der Informationstechnik 2000

Last Update on 6 April 2000