Jump to content

Government Secure Intranet

From Wikipedia, the free encyclopedia

This is the current revision of this page, as edited by Kvng (talk | contribs) at 14:20, 15 May 2024 (Adding short description: "United Kingdom government wide area network"). The present address (URL) is a permanent link to this version.

(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)


Government Secure Intranet (GSi) was a United Kingdom government wide area network, whose main purpose was to enable connected organisations to communicate electronically and securely at low protective marking levels. It was known for the '.gsi.gov.uk' family of domains for government email. Migration away from these domains began in 2019[1] and will be completed in 2023.[2]

History

[edit]

Use

[edit]

Many UK government organisations used the GSi to transfer files on a peer-to-peer (P2P) basis between similarly accredited networks. The network itself was open within the context of its accreditation – it imposed no restrictions on traffic types carried across the network, restrictions and policy control were left to the connecting departments. Email traffic in and out of the network was filtered by an external provider.

Origin

[edit]

The concept of GSi was defined by the Cabinet Office, and was turned into practical reality by the Internet Special Products group of Cable & Wireless (then known as Mercury Communications) at their Brentford premises. GSi development started late 1996, and can be roughly dated by checking the registration date of its first domain name, 'gsi.net', registered 30 May 1997. The formal go-live date was several months later (according to the Central Computer and Telecommunications Agency (CCTA) this was February 1998).[citation needed]

The main drivers behind the development of GSi was the plethora of inter-agency connections in UK government which made managing security and connectivity budgets problematic. GSi not only provided better oversight, it also normalised connectivity. GSi was designed as an accredited, dual link connected Internet Protocol backbone, it imposed no restrictions on what type of traffic it carried; any restrictions were considered a policy decision for each connecting department.

The design of GSi partly supported the then developing eGIF interoperability standards. This was a direct consequence of the two key technical people driving the project, one from Cable & Wireless, one from the UK government in the form of the CCTA.[citation needed]

GSi used SMTP as mail transport protocol, and the conversion from the then prevalent X.400 email facilities to SMTP proved for many departments an improvement in reliability and speed. In the case of X.400, this conversion also cut email costs substantially as X.400 message conversions were still chargeable even if the conversion failed due to message size. In some cases, the ROI of such an email conversion was as short as two months.[citation needed]

The creation of GSi handed Cable & Wireless a monopoly on UK government data connectivity. GSi can be considered one of the more successful UK government IT projects from the point of view of take up - even when still in pilot phase, demand increased to a point where service windows had to be imposed to continue building the platform to full strength.[citation needed]

The development of GSi was also the root of the creation of the CESG Listed Adviser Scheme (CLAS). During the build of GSi, the need for accredited advisers became clear as advice on connectivity invariably involved discussing government confidential matters. CESG eventually responded with the above CLAS scheme.

Operations contract

[edit]

GSi was operated on a five-year renewable contract basis. Energis won this contract from Cable & Wireless in August 2003. Cable & Wireless then bought Energis in 2005, thus regaining control over the platform.

Cable and Wireless Worldwide won the GSi Convergence Framework (GCF) contract in 2011.[3]

The GSi and Managed Telecommunications Service (MTS) framework agreements finished in August 2011 with contracts running on to 12 February 2012. GCF is intended to facilitate the migration to the Public Services Network.[4]

Previous developments

[edit]

Government Connect went live across local authorities in England and Wales.[5] Government Connect is a pan-government programme providing an accredited and secure network between central government and every local authority in England and Wales and allows exchange of RESTRICTED information between authorities. The GCSX network is part of the wider GSi and provides connectivity to nearly all central departments. Scottish local authorities have already established a similar network known as the Government Secure Extranet (GSX).[6]

Local authorities with a GCSX connection can now use a GCSX email account to exchange sensitive data, including DWP benefits data, patient identifiable data, with health sector staff who have a NHS.net email address, e.g. PCT staff and GPs.

As both GCSX and the Police National Network (PNN) are both connected to the wider Government Secure Intranet (GSi), data can be transferred securely between local authorities and the Police.

GC Mail can be used now to replace the existing less efficient and less secure methods of exchanging data between local authorities and the Police. Local authorities that deliver Housing and Council Tax benefits are taking part in the e-Transfers programme, which is e-enabling the process for delivery of Local Authority Input Documents (LAIDs) and Local Authority Claim Information (LACIs).

Version 4.1 of the Code of Connection for compliance was introduced in 2010.[7]

Compared with version 3.2 the main Code of Connection version 4.1 areas of are:

  • Mobile working - full implementation of compliant service
  • Firewall specification (EAL 4)
  • Execution of unauthorised software
  • Requirement for IT Healthchecks (CHECK / CREST / TigerScheme)
  • Labelling e-mails with protective markings.[8]

Public Services Network

[edit]

The Public Services Network is a UK Government programme that unified the provision of network infrastructure across the United Kingdom public sector into an interconnected "network of networks". This included large elements of GSi. It is now a legacy network.[9]

Centrally procured public sector networks migrated across to the PSN framework as they reached the end of their contract terms, either through an interim framework or directly. The Government Secure Intranet (GSi) contracts expired in September 2011, running on to 12 February 2012 and were replaced by the transitional Government Secure Intranet Convergence Framework (GCF).

References

[edit]
  1. ^ "Updating government email domains: migrating from .gsi". GOV.UK.
  2. ^ "Removing gsi-family domains from the public sector - Technology in government". technology.blog.gov.uk. GOV.UK.
  3. ^ "Vodafone | Mobile Phones, 4G, Mobile Data, SIMs, PAYG, Business". Cw.com. Retrieved 2014-02-17.
  4. ^ "Mts and GSi services enter their final year". Archived from the original on 29 May 2012. Retrieved 21 December 2011.
  5. ^ "Crown Commercial Service website | Crown Commercial Service". Govconnect.gov.uk. Archived from the original on 2010-04-13. Retrieved 2014-02-17.
  6. ^ "System Highland Council staff use to access intranet at home 'a risk'". BBC News. 13 June 2012. Retrieved 2016-04-17.
  7. ^ "Crown Commercial Service website | Crown Commercial Service" (PDF). Govconnect.gov.uk. Archived from the original (PDF) on 2009-10-09. Retrieved 2014-02-17.
  8. ^ "Archived copy" (PDF). Archived from the original (PDF) on 2009-11-02. Retrieved 2009-12-05.{{cite web}}: CS1 maint: archived copy as title (link)
  9. ^ "Public Services Network (PSN)". GOV.UK.