3:59 AM
gemy
The UK Government's initiative to prescribe a security standard to any organization accessing the Government Connect Secure Extranet is a move designed to keep government organisations one step ahead of the relentless increase in security threats. There have been lots of high profile information thefts & losses by Government organizations, highlighting both the risk to, & the importance of, ICT Security & the governance of citizens' information.
The result is the Government Connect Secure Extranet (GCSx). HM Government has mandated the way in which public authorities & government departments can securely transfer information between each other.
The idea is a "community of trust" & the GCSx is one of a lot of secure Government extranets, including GSx, GSi & GCJx. See our Glossary of Terms at the finish for details of these other networks.
So, for example, how does a local authority needing Housing Benefits information access the Department for Works & Pensions (DWP) database? by the GCSx of course! Similarly, Job Centre and communications with local authorities will only accept communications by the GCSx, & likewise, communications with the Police & the NHS will only be provided through this connection.
So how does a district council access the GCSx? by a secure connection, the security of which is ruled by the Code of Connection, or 'CoCo'.
The GCSx CoCo
In England & Wales it is referred to as the GCSX Code of Connection (CoCo). In Scotland it is referred to as the GSX Code of Connection (CoCo). Through GCSx, local authorities can connect to the Government Secure Extranet (GSX) & Intranet(GSI), the National Health Service (NHS), Criminal Justice Extranet (CJX), & the Police National Network (PNN). The Code of Connection takes into consideration how best to protect the "community of trust" taking into account all potential threats, including assault from the GCSx itself assault from the net Mobile information theft & loss assault from the internal user
Code of Connection (CoCo) for the Government Secure Intranet (GSI) & GCSx, Memorandum Number 22. According to CESG Infosec Memorandum Number 22, protective monitoring has historicallyin the past been the most underrated & least effectively used security measure. The scope of the GCSx Code of Connection can be summarised as follows Physical Security & Access Control, restrict & control access to the GCSx, including use of Firewalls, Intrusion Protection know-how & with particular focus on Mobile/Remote Worker security Policies & Procedures, in particular change Management Processes, approvals & documentation. Configuration 'hardening', to make sure that known threats & vulnerabilities are eliminated from all systems, with a zealous patch management system combined with anti-virus know-how, regularly tested & verified as secure. Strong Monitoring for security incidents & events, with all event logs being retained for 6 months
The result is the Government Connect Secure Extranet (GCSx). HM Government has mandated the way in which public authorities & government departments can securely transfer information between each other.
The idea is a "community of trust" & the GCSx is one of a lot of secure Government extranets, including GSx, GSi & GCJx. See our Glossary of Terms at the finish for details of these other networks.
So, for example, how does a local authority needing Housing Benefits information access the Department for Works & Pensions (DWP) database? by the GCSx of course! Similarly, Job Centre and communications with local authorities will only accept communications by the GCSx, & likewise, communications with the Police & the NHS will only be provided through this connection.
So how does a district council access the GCSx? by a secure connection, the security of which is ruled by the Code of Connection, or 'CoCo'.
The GCSx CoCo
In England & Wales it is referred to as the GCSX Code of Connection (CoCo). In Scotland it is referred to as the GSX Code of Connection (CoCo). Through GCSx, local authorities can connect to the Government Secure Extranet (GSX) & Intranet(GSI), the National Health Service (NHS), Criminal Justice Extranet (CJX), & the Police National Network (PNN). The Code of Connection takes into consideration how best to protect the "community of trust" taking into account all potential threats, including assault from the GCSx itself assault from the net Mobile information theft & loss assault from the internal user
Code of Connection (CoCo) for the Government Secure Intranet (GSI) & GCSx, Memorandum Number 22. According to CESG Infosec Memorandum Number 22, protective monitoring has historicallyin the past been the most underrated & least effectively used security measure. The scope of the GCSx Code of Connection can be summarised as follows Physical Security & Access Control, restrict & control access to the GCSx, including use of Firewalls, Intrusion Protection know-how & with particular focus on Mobile/Remote Worker security Policies & Procedures, in particular change Management Processes, approvals & documentation. Configuration 'hardening', to make sure that known threats & vulnerabilities are eliminated from all systems, with a zealous patch management system combined with anti-virus know-how, regularly tested & verified as secure. Strong Monitoring for security incidents & events, with all event logs being retained for 6 months
0 comments:
Post a Comment
Type your comment in the briefing and without departing from the literature