British Standards contain the combined knowledge of experienced UK subject experts often working together with their international colleagues in an open, consensus-based process.
You can read a description of these standards and some other relevant publications that are available from BSI or other organizations below:
Standard number/name | Description/Benefits | Published by |
BS ISO/IEC 27033-1 Network security. Overview and concepts | Provides a comprehensive overview of network security issues and technologies for planning purposes | BSI |
BS ISO/IEC 27033-2 Guidelines for the design and implementation of network security | Can help define network security requirements | BSI |
BS ISO/IEC 27033-3 Network security. Reference networking scenarios. Threats, design techniques and control issues | Identifies threats, design techniques and control issues associated with various types of network. | BSI |
BS ISO/IEC 27033-4, Securing communications between networks using security gateways | Gives detailed technical guidance for securing communications between networks using security gateways. Describes different types of firewalls and other gateway security devices such as routers and Intrusion Protection Systems. | BSI |
BS ISO/IEC 27033-5, Securing communications across networks using Virtual Private Networks (VPNs) | Provides detailed technical guidance for securing network interconnections and connecting remote users to networks by use of Virtual Private Networks. | BSI |
NIST SP 800-41, Guidelines on Firewalls and Firewall Policy | Provides practical guidance on developing firewall policies and selecting, configuring, testing, deploying and managing firewalls. This is a free special publication from the US National Institute of Standards and Technology | US National Institute of Standards and Technology |
NIST SP 800-46, Guide to Enterprise Telework and Remote Access Security | Provides recommendations for securing remote access to both clients and servers. This is a free special publication from the US National Institute of Standards and Technology | US National Institute of Standards and Technology |
NIST Special guides | There are a number of further specialist guides available from NIST. | US National Institute of Standards and Technology |
PCI-DDS supplement | The PCI Security Standards Council has a useful supplement its PCI-DSS standard that deals with using firewalls to protect web applications. | PCI Security Standards Council |