+ORP.4.A12 Developing an Authentication Concept for IT Systems and Applications [IT Operation Department] (S)

1. Overview

ORP.4.A12 Developing an Authentication Concept for IT Systems and Applications [IT Operation Department] (S)

An authentication concept SHOULD be drawn up that includes a definition of the functional and security requirements of authentication for each IT system and application at hand. Authentication information MUST be stored in a cryptographically secure manner. Authentication information MUST NOT be transmitted unencrypted over insecure networks.

Summary	Standard

1.1 References

1.2 Identified Requirements

1.2 Related Regulation

2. Identified Requirements

Requirements
Source	Requirement

3. Related Regulations

Regulations
Source	Regulation

ITGC -
Bundesamt für Sicherheiter in der Informationstechnik - IT-Grundschutzkompendium Stand 2022