IT infrastructure

Richard C introduces new guidance on safe, malware-free data import

An architecture pattern for safely importing data into a system from an external source.

You should be serving web pages over HTTPS. Are you?

Alpha security configuration guidance for Windows 10 with MDM

Guidance to help organisations understand and mitigate against DoS attacks.

Andy P explains how the NCSC rolls out software updates without delays.

These Security Procedures provide guidance in the secure operation of Egress Switch.

Understand the points in your service where resources can be overloaded or exhausted. Determine whether you, or a supplier, are responsible for each.

Ensure your service providers are ready to deal with resource exhaustion in places where they are uniquely placed to help.

Ensure your service can scale to deal with surges in concurrent sessions.

You should design your service, and plan your response to an attack, so that the service can continue to operate, albeit in a degraded fashion.

Gain confidence in your defenses by testing them, and gain confidence you'll notice when attacks start by having the right tooling in place.

An introduction to denial of service (DoS) attacks.

The first in a series of blogs about how we built an OFFICIAL IT system to meet the needs of the NCSC

The latest blog on NCSC's own IT, this time how we protect our Windows end user devices from malware.

Provides secure corporate network connectivity over a less-trusted network.

Introducing our new Windows10 with MDM guidance

In this guidance we discuss the reasons for using VPNs and make recommendations on aspects of the underlying technology, such as protocols and cryptography. We also give risk management advice to organisations considering the use of VPNs.

An introduction to our new guidance on virtual private networks

What to do if you suspect your internet edge router has been compromised