2月 27, 2023
IT-Grundschutz compendium 2023 recommends virtual browsers
With the new edition of the IT-Grundschutz compendium, the German Federal Office for Information Security (BSI) is once again providing companies, public authorities and critical infrastructure facilities with a detailed guide to effectively protect themselves against attacks on their IT systems. In addition to technical and personnel recommendations, the compendium provides users with relevant information on securing the organization and infrastructure. In the new, revised edition, additional attention is paid to the security of building automation or remote maintenance in industrial environments. Rohde & Schwarz Cybersecurity bases its solutions for secure digitalization with simultaneous digital sovereignty on the basic IT protection recommended by the BSI.
Revision of the "web browser" module
The 2023 edition of the IT-Grundschutz compendium contains a total of 111 IT-Grundschutz building blocks. These include ten new IT-Grundschutz building blocks and 101 building blocks from edition 2022. The web browser building block has been fundamentally revised. After defining web browsers, the compendium addresses risks and notes: "The complexity of modern web browsers offers a high potential for serious conceptual errors and programming vulnerabilities. It not only increases the potential dangers for attacks from the Internet, but also poses additional risks due to programming and operating errors. The risks to the confidentiality and integrity of data are considerable. Likewise, the availability of the entire IT system is threatened by such vulnerabilities. Internet content must consequently be regarded as fundamentally untrustworthy from the perspective of the web browser." The module goes on to describe the recommended security requirements for web browsers used on clients, i.e., on stationary and mobile IT systems as well as on tablets and smartphones. Particularly in the case of increased protection requirements, the BSI recommends a specially secured, isolated browser environment with virtualized instances.
Effective protection against attacks from the Internet
Browser in the Box meets precisely these criteria and offers even more security. The virtual browser, coupled with complete network isolation, effectively secures the Internet. R&S®Browser in the Box closes the "Internet" security gap via a "digital" quarantine for hacker attacks: The malware is isolated before it can be executed and thus does not have access to the workstation or sensitive network infrastructure at any time. This mechanism also protects against attacks via email attachments, while providing support for web conferencing with microphone use and webcam. Secure surfing should be a matter of course in every company and government agency - not only, but even more so when there is an increased need for protection. With its easy scalability, R&S®Browser in the Box adapts to users' individual needs.
We would be happy to help you find the appropriate Rohde & Schwarz Cybersecurity solutions based on the IT-Grundschutz compendium edition 2023 and thus guarantee the best possible protection for your sensitive data.