Federal Office for Information Security

The Federal Office for Information Security (German: Bundesamt für Sicherheit in der Informationstechnik, abbreviated as BSI) is the German upper-level federal agency in charge of managing computer and communication security for the German government. Its areas of expertise and responsibility include the security of computer applications, critical infrastructure protection, Internet security, cryptography, counter eavesdropping, certification of security products and the accreditation of security test laboratories. It is located in Bonn and as of 2020 has about 1,100 employees. Its current president, since 1 February 2016, is former business executive Arne Schönbohm, who took over the presidency from Michael Hange.

Federal Office for Information Security
Bundesamt für Sicherheit in der Informationstechnik
Bundesamt für Sicherheit in der Informationstechnik Logo.svg
Agency overview
Superseding agency
JurisdictionGovernment of Germany
Employees>1,100 [1]
Minister responsible
Agency executive
Building in Bonn, Germany

BSI's predecessor was the cryptographic department of Germany's foreign intelligence agency (BND). BSI still designs cryptographic algorithms such as the Libelle cipher and initiated the development of the Gpg4win cryptographic suite.

Similar AgenciesEdit

The BSI has a similar role as the

  • Computer Security Division (CSD) of Information Technology Laboratory (ITL) of NIST (United States)
  • CESG (United Kingdom)
  • National Cybersecurity Institute (INCIBE)[2] (Spain)

Unlike those organizations, BSI is focused on IT security rather than being part of an organisation with a more general IT standards remit. BSI is separate from Germany's signals intelligence, which is part of the military and the foreign intelligence service (BND).


In December 2018, Arne Schönbohm stated that the BSI had not yet seen evidence that Chinese telecommunications company Huawei had used its equipment to conduct espionage on behalf of China.[3]


Enterprise security guidelines established by the office are detailed in its IT Baseline Protection Catalog, or IT-Grundschutz, a comprehensive guide documenting over 1000 recommended controls.[4]

See alsoEdit


  1. ^ "Das Bundesamt für Sicherheit in der Informationstechnik". The Federal Office for Information Security (in German)
  2. ^ "incibe". incibe.es. Retrieved 2019-02-06.
  3. ^ Varghese, Sam. "iTWire - German IT watchdog says no evidence to back Huawei spying claims". IT Wire. Retrieved 2018-12-26.
  4. ^ "Using standards to create cyber security policies". British Standards Institution. Retrieved 27 January 2020.

External linksEdit