scope:

ISO/IEC 27033 Part 3 describes the threats design techniques and control issues associated with reference network scenarios. For each scenario, Part 3 provides detailed guidance on the security threats and the security design techniques and controls required to mitigate those risks. Where relevant, Part 3 includes references to Parts 4 to 6, to avoid duplicating the content of those documents. The information in Part 3 should be used when reviewing technical security architecture/design options and selecting and documenting the preferred technical security architecture/design and related security controls, in accordance with ISO/IEC 27033 Part 2. The particular information selected (together with information selected from Parts 4 to 6) will depend on the characteristics of the network environment under review, i.e. the particular network scenario(s) and 'technology' topic(s) concerned. Overall, Part 3 will aid considerably the comprehensive definition and implementation of security for any organization's network environment.