Topic

Implementing gateways

Applicable to

all

History

Priority

must

Mar 2022

Gateways are implemented between networks belonging to different security domains.

Miscellaneous changes were made to rationale and recommendations throughout the publication to clarify content without changing intent. This included a review from the Guidelines for System Hardening chapter through to the Guidelines for Data Transfers chapter.

Mar 2019

All systems are protected from systems in other security domains by one or more gateways.

Security control 0628 was reworded.

Feb 2019

All systems are protected from systems in other security domains by one or more gateways or CDS.

2017

Agencies must ensure that:• all systems are protected from systems in other security domains by one or more gatewaysor cross domain solutions• all gateways contain mechanisms to filter data flows at the network layer.

Control Text Changed. No public explaination.

2015

Agencies must ensure that:• all systems are protected from systems in other security domains by one or more gateways• all gateways contain mechanisms to filter data flows at the network layer.

2010

Agencies must ensure that:• all systems are protected from systems in other security domains by one or more gateways• all gateways contain mechanisms to limit data flow at network and content levels to only the informationnecessary for business purposes• all gateway components are physically located in an appropriately secured server room.

2008

Agencies must ensure that: a. all agency networks are protected from other networks by gateways b. all gateways contain an appropriate network device to control data flow c. all data flows are appropriately controlled d. all gateway components are physically located within an appropriately secured server room.