Federal Office for Information Security

From Wikipedia, the free encyclopedia
  (Redirected from IT Baseline Protection Catalogs)
Jump to navigation Jump to search
Federal Office for Information Security
Bundesamt für Sicherheit in der Informationstechnik
Bundesamt für Sicherheit in der Informationstechnik Logo.svg
Agency overview
Superseding agency
JurisdictionGovernment of Germany
Employees> 940 [1]
Minister responsible
Agency executive
Building in Bonn, Germany

The Federal Office for Information Security (German: Bundesamt für Sicherheit in der Informationstechnik, abbreviated as BSI) is the German upper-level federal agency in charge of managing computer and communication security for the German government. Its areas of expertise and responsibility include the security of computer applications, critical infrastructure protection, Internet security, cryptography, counter eavesdropping, certification of security products and the accreditation of security test laboratories. It is located in Bonn and as of 2019 has over 940 employees. Its current president, since 1 February 2016, is former business executive Arne Schönbohm, who took over the presidency from Michael Hange.

BSI's predecessor was the cryptographic department of Germany's foreign intelligence agency (BND). BSI still designs cryptographic algorithms such as the Libelle cipher and initiated the development of the Gpg4win cryptographic suite.

Similar Agencies[edit]

The BSI has a similar role as the

  • Computer Security Division (CSD) of Information Technology Laboratory (ITL) of NIST (United States)
  • CESG (United Kingdom)
  • National Cybersecurity Institute (INCIBE)[2] (Spain)

Unlike those organizations, BSI is focused on IT-security rather than being part of an organisation with a more general IT-standards remit. BSI is separate from Germany's signals intelligence, which is part of the military and the foreign intelligence service (BND).


In December 2018, Arne Schönbohm stated that the BSI had not yet seen evidence that Chinese telecommunications company Huawei had used its equipment to conduct espionage on behalf of China.[3]


Enterprise security guidelines established by the office are detailed in its IT Baseline Protection Catalog, or IT-Grundschutz, a comprehensive guide documenting over 1000 recommended controls.[4]

See also[edit]


  1. ^ "Archived copy". Archived from the original on 2014-10-15. Retrieved 2014-09-09.CS1 maint: archived copy as title (link) BSI - About the BSI (in German)
  2. ^ "incibe". incibe.es. Retrieved 2019-02-06.
  3. ^ Varghese, Sam. "iTWire - German IT watchdog says no evidence to back Huawei spying claims". IT Wire. Retrieved 2018-12-26.
  4. ^ "Using standards to create cyber security policies". British Standards Institution. Retrieved 27 January 2020.

External links[edit]