There is an ever increasing need to use networks within organizations and between organizations. Requirements have to be met to use networks securely. The area of remote access to a network requires specific measures when IT security should be in place. BS ISO/IEC 18028 provides guidance for accessing networks remotely - either for using email, file transfer or simply working remotely.
Part 1 provides guidance on networks and communications, to include the security aspects of connecting information system networks themselves, and of connecting remote users to networks.
The guidance supports the identification and analysis of the communications related factors that should be taken into account to establish network security requirements, provides an introduction on how to identify appropriate control areas with respect to security associated with connections to communications networks, and provides an overview of the possible control areas including those technical design and implementation topics dealt with in detail in BS ISO/IEC 18028 Parts 2 to 5.
Contents:
- Scope
- Normative references
- Terms and definitions
- Abbreviated terms
- Structure
- Aim
- Overview
- Consider corporate information security requirements
- Review network architectures and applications
- Identify types of network connection
- Review networking characteristics and related trust relationships
- Identify the information security risks
- Identify appropriate potential control areas
- Implement and operate security controls
- Monitor and review implementation
- Bibliography