Central regulation A-960/1, formerly ZDv 54/100 (IT Security in the Bundeswehr) is used as the basis for devising IT security concepts for the Bundeswehr, the German army. The following main steps are performed:
- Analysis of protection requirements and structure
- Derivation of IT security requirements in technical, personnel- and material-related and organisational terms
- Documentation of the implementation of IT security requirements via IT security safeguards
- Risk analysis on the basis of A-960/1
A comprehensive assessment of IT security under Bundeswehr standards is performed, also supplemented by civilian standards such as IT-Grundschutz if required.
The IT security concept is supported by a military version of the SAVe® IT security database that was specially developed for military requirements (A-960/1).
When devising a concept for IT security, further special concepts are also drawn up, for example for contingency planning or data backup. See also IT security policies and concepts.