For example, the BSI develops practice-oriented minimum standards and target group-specific recommendations for handling IT and Internet security.

This involves defending against cyber attacks and other technical threats against the IT systems and networks of the federal administration.

Testing and certification is possible with regard to the standards of the IT-Grundschutzhandbuch, the Green Book, ITSEC and the Common Criteria.

The IT Baseline Protection Catalog, or IT-Grundschutz, is a collection of enterprise security guidelines established by the office, which serve to identify and combat security-relevant vulnerabilities in IT environments.

With introduction and catalogs, the collection comprises more than 4,800 pages and serves companies and authorities as a basis for obtaining certification according to IT-Grundschutz.

It was launched 2012 in public–private partnership cooperation with the German Association for Information Technology, Telecommunications and New Media (Bitkom).

In addition to providing information, the BSI also offers specific and actionable recommendations, for example on topics such as e-mail encryption, smartphone security, online banking, cloud computing or social networks.

Private users can also contact the BSI by phone or e-mail with their questions on IT and Internet security issues.