Posts Tagged :

BSI

SALTO achieves BSI Enhanced Level IoT Kitemark™

516 344 Stuart O'Brien

SALTO Systems, a leading manufacturer of electronic access control solutions, has become the first company to achieve the BSI Enhanced Level IoT Kitemark™ for access control systems.

The IoT is typically a network of smart devices and systems that can be connected, enabling data to be exchanged to provide services, efficiency and innovation. Its technology can positively enhance lives and businesses, but the complexity of IoT also means that those of criminal intent may attempt to access it to steal data, hack cameras, enter buildings or otherwise breach security.

The Enhanced Level IoT Kitemark demonstrates that a connected product has a higher level of security controls in place than the market standard for its type and is generally suitable for higher value or risk applications. Assessment to this level involves BSI’s most in-depth and exacting testing and analysis.

To achieve certification, SALTO’s XS4 One access control solution had to meet the requirements of a Quality Management System such as ISO 9001 and was also required to undergo advanced security testing for vulnerabilities and security flaws in BSI’s state of the art IoT laboratory. Furthermore, SALTO’s JustIN mobile app and ProAccess Space web services were also assessed under BSI’s Secure Digital Applications Kitemark, ensuring the wider system associated with the XS4 One had the appropriate security controls in place to provide support effectively.

SALTO Systems Limited MD Ramesh Gurdev says: “This achievement is yet another milestone that sets SALTO apart from others in the market. It provides a mark of trust for current and potential customers to demonstrate that our connected products are safe, secure and fit for purpose throughout their life”. 

David Mudd, Global Digital and Connected Product Certification Manager at BSI said “Achieving the Enhanced Level IoT Kitemark has enabled SALTO to demonstrate that its XS4 One product exceeds the market standard for security control.

“Additionally, certification to the Secure Digital Applications Kitemark for the organization’s JustIN app and web services will provide further reassurance to SALTO customers so that its entire access control eco-system has the appropriate security control in place.”

www.saltosystems.com

BSI Germany

Germany in ‘heightened readiness’ of cyber attacks

960 640 Stuart O'Brien

The German government has raised its alert level against cyber attacks ahead of parliamentary elections, warning that the attacks are already in progress on government websites on a daily basis, according to Reuters.

“We are noticing attacks against government networks on a daily basis,” Arne Schoenbohm, president of Germany’s Federal Office for Information Security (BSI), told the newspaper Welt am Sonntag.

BSI is in close contact with election officials, political parties and German federal states to discuss how best to guard against cyber attacks and stands ready to react to potential attacks ahead of the elections, Schoenbohm said.

The newspaper provided no details on the number and types of the alert levels, but said that levels had been raised since the cyber attacks interfered with the US presidential election.

The BSI is due to hold a press conference in Hanover at Germany’s largest annual technology conference, CeBIT.

Hackers infiltrated German Parliament’s computer network in May 2015, with a year-long report by the country’s intelligence agency concluding that the attack was most likely the work of Russian counterparts.

Back in December, 900,000 Germans lost access to internet and telephone services, under fresh claims from German politicians that the attacks were coming from Moscow.

In February this year the president of Germany’s BfV domestic intelligence agency, Hans Georg Maasen, warned that industrialised countries were becoming increasingly vulnerable to cyber attacks as industry increases the adoptions of digital technologies, and a “growing evidence for attempts to influence the federal election next year.”

Door security personnel standard reviewed to meet legal requirements…

800 450 Jack Wynn

The business standards company BSI has revised the BS 7960 Door supervision – Code of practice standard to accommodate changes in the legal requirements for door security staff.

The updated standard gives recommendations for the organisation and management of companies providing door supervision services, whether contracted or in-house, to licensed premises or events.

A ‘Response to Emergencies’ section replaces the previous ‘Contingency Plan for Security’, and guidance for door security personnel on how to handle emergencies such as performing first aid on a vulnerable person, responding appropriately to a terrorist attack or other large-scale emergency has been introduced.

Anne Hayes, head of Market Development for Governance and Resilience at BSI, said:  “Professional door supervisors fulfil a crucial role not only in providing security for premises but in upholding the safety and wellbeing of individuals on their premises. In developing BS 7960, we worked closely with private security firms to ascertain what door security personnel need to do their job as safely and effectively as possible.”

As well as public and private organisations requiring the use of door supervisors, the standard is expected to be particularly relevant to the Institute of Professional Investigators, Ex-Police in Industry and Commerce (EPIC), the Association of Security Consultants, and the National Association of Security Dog Users (NASDU).

The changing face of the labour market has also been acknowledged, with the new standard now referring to the deployment rather than employment of door security personnel. A new clause has been added to ensure the requirements of the standard are still met when the door security personnel is working for a subcontractor.

All organisations involved in the development of the standard include: the British Security Industry Association; National Security Inspectorate; Security Industry Authority; the Proof of Age Standards Scheme (PASS); International Professional Security Association (IPSA); Security Systems and Alarms Inspection Board (SSAIB); IQ Verify; TSS Security UK Ltd; SecuriGroup Ltd; Virtual Compliance Manager Ltd; Mitchells & Butlers Retail Ltd; Assist Security Ltd; and other independent experts.