+COS-07 Documentation of the Network Topology
---+COS-07.01B
---+COS-07.02B
---+COS-07.03B
---+COS-07.04B

1. Übersicht

COS-07 Documentation of the Network Topology

-

Bezeichnung	Standard
COS-07.01B	The documentation of the logical structure of the network used to provide or operate the cloud service is traceable and up-to-date, in order to avoid administrative errors during live operation and to ensure timely recovery in the event of incidents in accordance with contractual obligations. The documentation shows: 1. How the subnets are allocated; 2. How the network is zoned and segmented; 3. How the network connects with third party and public networks; and 4. How the data flows between different subnets and system components within the network to support the management, monitoring and analysis of the network. The network documentation can follow a hierarchical or grouped approach based on the scale of operations. Zoning is a segmentation of the subnets with a firewall implemented at the network perimeters.
COS-07.02B	The partitions, regions, zones or location in which the cloud service customer data is stored are indicated. The network documentation can follow a hierarchical or grouped approach based on the scale of operations.
COS-07.03B	The cloud service provider establishes and maintains an accurate representation of the technical and logical structure of the cloud service provider's systems based on the network topology documentation and the asset inventory (cf. AM-02). The documentation includes the system components that provide security functions and the system components that host the corresponding cloud service customer data and cloud service derived data, or provide sensitive functions. The network documentation can follow a hierarchical or grouped approach based on the scale of operations.
COS-07.04B	The network topology documentation is reviewed at least once a year. Timely and appropriate remediation measures address any deviations identified during the review.

1.1 Referenzen

1.2 Identifizierte Anforderungen

1.2 Related Regulation

2. Identifizierte Anforderungen

Anforderungen
Source	Anforderung

3. Related Regulations

Regulations
Source	Regulierung

Cloud Computing Compliance Criteria Catalogue (C5:2026) -
Copyright by Bundesamt für Sicherheit in der Informationstechnik (https://www.bsi.bund.de/)

https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Informationen-und-Empfehlungen/Empfehlungen-nach-Angriffszielen/Cloud-Computing/Kriterienkatalog-C5/C5_2025/C5_2025_node.html

Impressum