WSDL-Dateien zur Technische Richtlinie Sichere Szenarien für Kommunikationsprozesse im Bereich hoheitlicher Dokumente BSI TR-03132, Version: 1.8.2

Die Technische Richtlinie besteht aus diesem Hauptdokument sowie einer Reihe ergänzender Anlagen, in denen einzelne Aspekte näher spezifiziert und erläutert werden.
In diesem Hauptdokument [TR-ESOR] V1.3 werden die rechtlichen Rahmenbedingungen und Normen, die grundsätzlichen Ziele und Anforderungen, sowie die abzubildenden Prozesse und Funktionen beschrieben. Daraus abgeleitet werden Anforderungen an das Einrichten sowie die Systemtechnik an sich und eine empfohlene Systemarchitektur (Referenzarchitektur). Ergänzend folgen die Sicherheitsziele und Sicherheitsmaßnahmen für ein solches System. Die Vorstellung der Zusammenlegung der Zertifizierungsstufen und der Umfang und die Inhalte einer Konformitätsprüfung technischer Produktlösungen gegen die in dieser Richtlinie definierten Anforderungen bilden den Abschluss. Die Beschreibung der Ziele und Anforderungen ist strikt produkt- und herstellerneutral und orientiert sich allein an den entsprechenden Anforderungen zur gesetzlich geregelten Beweiswerterhaltung bei kryptographisch signierten elektronischen Unterlagen.

YAML-Datei als ZIP-Verzeichnis gepackt.

The technical guideline ‘Technical Guideline for Biometric Authentication Components in Devices for Authentication’ (BSI TR-03166) provides specifications and recommendations regarding biometrics as an authentication factor alongside knowledge and possession. The corresponding performance requirements and the demand for PAD functionalities are closely related to the requirements of the eIDAS regulation. Future application scenarios may make it necessary for biometric verification or authentication to fulfil a certain level of trust appropriate to the application scenario. The required level of trust in the authentication is determined by the service itself. Exemplary usage scenarios are outlined in the appendix of the technical guideline using the example of a smartphone.

Dieses Dokument ist in englischer Sprache verfasst, da die Hauptzielgruppe betroffener Geräte (Smartphones), sich im nicht deutschsprachigem Ausland befindet. Vorausgehende Kommunikation mit Smartphoneherstellern hat gezeigt, dass englischsprachige Dokumente eine einfachere Kommunikation der Anforderungen ermöglicht.

Technical Guideline TR-03183: Cyber Resilience Requirements for Manufacturers and Products - Part 1: General requirements Version 0.9.0

Technical Guideline TR-03183: Cyber Resilience Requirements for Manufacturers and Products - Part 3: Vulnerability Reports and Notifications

Part 2 of BSI TR-03183 describes formal and technical requirements for Software Bill of Materials (SBOM--Software Bill of Materials), which are required in Part 1 of TR-03183, among others.

The Technical Guideline TR-03183: Cyber Resilience Requirements for Manufacturers and Products aims to provide manufacturers with advance access to the type of requirements that will be imposed on them by the future Cyber Resilience Act (CRA--Cyber Resilience Act) of the EU.

Health applications (e-health) follow the overall goal of supporting the treatment and care of patients and utilizing the opportunities offered by modern information and communication technologies (IKT) (see [BMG-EH]). In the context of this Technical Guideline (TR), digital health applications and digital care applications should be highlighted in particular:
According to Section § 33a of the German Social Code Book V (SGB V), those with German statutory health insurance have, under certain conditions, the right to the supply of so-called digital health applications.
According to Section § 40a of the German Social Code Book XI (SGB XI), patients in social care insurance have, under certain conditions, the right to the supply of so-called digital care applications.

The TR is aimed at developers of healthcare applications for mobile devices. In addition, it can be considered as a directive for mobile applications that process or store sensitive data.

Health applications (e-health) follow the overall goal of supporting the treatment and care of patients and utilizing the opportunities offered by modern information and communication technologies (IKT) (see [BMG-EH]). In the context of this Technical Guideline (TR), digital health applications and digital care applications should be highlighted in particular:
According to Section § 33a of the German Social Code Book V (SGB V), those with German statutory health insurance have, under certain conditions, the right to the supply of so-called digital health applications.
According to Section § 40a of the German Social Code Book XI (SGB XI), patients in social care insurance have, under certain conditions, the right to the supply of so-called digital care applications.

This TR is aimed at developers of backend systems for healthcare applications. In addition, it can be considered as a guideline for backend systems that process or store sensitive data in general.

Health applications (e-health) follow the overall goal of supporting the treatment and care of patients and utilizing the opportunities offered by modern information and communication technologies (IKT) (see [BMG-EH]). In the context of this Technical Guideline (TR), digital health applications and digital care applications should be highlighted in particular:
According to Section § 33a of the German Social Code Book V (SGB V), those with German statutory health insurance have, under certain conditions, the right to the supply of so-called digital health applications.
According to Section § 40a of the German Social Code Book XI (SGB XI), patients in social care insurance have, under certain conditions, the right to the supply of so-called digital care applications.

This TR is aimed at developers of web applications in the healthcare sector. In addition, it can be considered as a guideline for web applications that process or store sensitive data.