Reaffirmed 2021

NATIONAL FOREWORD

This Indian Standard (Part 2) which is identical with ISO/IEC 27033-2 : 2012 ‘Information technology - Security techniques - Part 2: Guidelines for the design and implementation of network security’ issued by the International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) jointly was adopted by the Bureau of Indian Standards on the recommendations of the Information Systems Security and Biometrics Sectional Committee and approval of the Electronics and Information Technology Division Council.

Other Parts in this series are:

Part 1 Overview and concepts

Part 3 Reference networking scenarios Threats-design techniques and control issues

Part 4 Securing communications between network using security gateways

Part 5 Sec uring communications across networks using Virtual Private Networks (VPNs)

The text of ISO/IEC Standard has been approved as suitable for publication as an Indian Standard without deviations. Certain conventions are however not identical to those used in Indian Standards. Attention is particularly drawn to the following:

a) Wherever the words ‘International Standard’ appear referring to this standard, they should be read as ‘Indian Standard’.

b) Comma (,) has been used as a decimal marker while in Indian Standards, the current practice is to use a point (.) as the decimal marker.