+COS-04 Cross-Network Access
---+COS-04.01B
---+COS-04.02B
---+COS-04.01AS
---+COS-04 Supplementary Information - Complementary Customer Criteria
|
1. Übersicht
COS-04 Cross-Network Access
-
| Bezeichnung |
Standard |
|
COS-04.01B
|
Each network perimeter is controlled by security gateways.
|
|
COS-04.02B
|
The system access authorisation for cross-network access is based on a security assessment based on the requirements of the cloud service customers.
A security gateway is a stack of chained filtering and firewall components that restrict communication to explicitly permitted traffic. Security gateways can, for example, employ a P-A-P structure, consisting of an outer packet filter, an application-level gateway acting as a deep-inspection proxy, and an inner packet filter. The stack may be further enriched with an intrusion detection system, intrusion prevention system, or antivirus scanner. However, this structure is not mandatory. It serves to keep filtering and inspection functionally independent of each other, so that a failure of one does not automatically lead to a failure of the other.
Cross-network access is access from one network to another network via a defined network perimeter.
|
|
COS-04.01AS
|
Each network perimeter is controlled by redundant and highly available security gateways.
|
|
COS-04 Supplementary Information - Complementary Customer Criteria
|
Cloud service customers ensure with suitable controls that access is controlled according to their protection needs by security gateways on the perimeters of the virtual networks within the cloud service for which they are responsible.
|
1.1 Referenzen
1.2 Identifizierte Anforderungen
1.2 Related Regulation
2. Identifizierte Anforderungen
Anforderungen
| Source |
Anforderung |
3. Related Regulations
Regulations
| Source |
Regulierung |
|