Leitfaden zur Informationssicherheit / Teil 3: Elektronischer Informationsaustausch mit Externen

VDMA 2016
24 pages

Member price visible after registration
ISBN 978-3-8163-0686-3

In recent decades, industrialization and global production have enabled companies to build up a complex
network of service provider structures in the production process that provides the necessary support in all areas of the
value chain. The associated exchange of information via purchasing and
development departments to suppliers and subcontractors through to the customer is a central element of this networked
production landscape. Important and often critical know-how for the company is thus accessible to many
partners around the globe. And this information is digital - easy to distribute and easy to lose. To prevent
this information from falling into the wrong hands, organizational, legal and technical measures are necessary,
to protect this data. This is a particular challenge not only for IT departments, but
for the entire organization of a company.

Contents:

1. Introduction
2. Objectives of the guide
3. Procedure
4. Questions
4.1. Decision-making according to the question: "What should be transmitted / exchanged?"
4.2 Decision-making based on the question: "What is the task, what do I want to do (use case)?"
4.3 Decision-making based on the question: "Who should be reached?"
5. opportunities and risks
5.1. identification of risks
6. requirements matrix

Use case viastore: connection of software partners
Use case: Heller: supplier connection via Citrix
Use case: AdHoc data transfer: secure exchange of confidential data via e-mail
Use case: planned file transfer
Use case: coupling of systems

Publisher:
Informatik, Information Security Working Group