This reuirements profile defines the security requirements for a digital labelling system.A digital labelling system is a component or a combination of components that performs secure digital labelling. Digital Labelling describes a process in which classified data is assigned a digital value that assigns the user data a specific classification according to the VSA, in this CI-RP at most VS-NfD. The user data may be digital documents (e.g. texts created with an office program), but also machine-generated digital data of various types. The assignment of a Label to user data is ensured by a cryptographic artifact (usually a digital signature), which is generated in the Digital Labelling process and becomes part of the Label. The purpose of this Label is to allow suitable technical components at network transitions (e.g. from a network approved for VS-NfD to an unclassified network) to decide on the basis of the Label whether the user data may be forwarded to the other network, and thus in particular to prevent the forwarding of higher-classified data.

Download BSI-VS-AP-0023-2020

Download BSI-CI-RP-0023-2020 (english Version)