http://cyfun.data.gift/data/requirement_PR_DS_02_2

Concept

http://cyfun.data.gift/data/subcategory_PR.DS-02
- External link
- Internal link

Properties and relations

Direct links from the subject.

Property	Value
type The subject is an instance of a class. External link Internal link	http://cyfun.data.gift/ontology#Requirement External link Internal link
type The subject is an instance of a class. External link Internal link	Concept An idea or notion; a unit of thought. External link Internal link
label A human-readable name for the subject. External link Internal link	PR.DS-02.2: The organisation shall protect its critical and sensitive information while in transit.
http://cyfun.data.gift/ontology#requirementId External link Internal link	PR.DS-02.2
http://cyfun.data.gift/ontology#foundIn External link Internal link	http://cyfun.data.gift/data/loc_CyFun2025_Booklet_ESSENTIAL_E_p114 External link Internal link
has broader Relates a concept to a concept that is more general in meaning. External link Internal link	http://cyfun.data.gift/data/subcategory_PR.DS-02 External link Internal link
note A general note, for any purpose. External link Internal link	The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered: - Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties. - End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device. - Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information. - Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates. - Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi. - Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.
note A general note, for any purpose. External link Internal link	The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered: - Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties. - End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device. - Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information. - Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates. - Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi. - Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.
note A general note, for any purpose. External link Internal link	<div><p>The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered:</p><ul><li>Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties.</li><li>End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device.</li><li>Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information.</li><li>Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates.</li><li>Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi.</li><li>Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.</li></ul></div>
note A general note, for any purpose. External link Internal link	The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered: • Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties. • End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device. • Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information. • Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates. • Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi. • Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.
notation A notation, also known as classification code, is a string of characters such as "T58.5" or "303.4833" used to uniquely identify a concept within the scope of a given concept scheme. External link Internal link	PR.DS-02.2
alternative label skos:prefLabel, skos:altLabel and skos:hiddenLabel are pairwise disjoint properties. External link Internal link	Data in transit protection
preferred label A resource has no more than one value of skos:prefLabel per language tag, and no more than one value of skos:prefLabel without language tag. External link Internal link	The organisation shall protect its critical and sensitive information while in transit.
is in scheme Relates a resource (for example a concept) to a concept scheme in which it is included. External link Internal link	http://cyfun.data.gift/data/CyFun2025 External link Internal link
is in scheme Relates a resource (for example a concept) to a concept scheme in which it is included. External link Internal link	http://cyfun.data.gift/data/CyFun2025_delta_IMPORTANT_to_ESSENTIAL External link Internal link
is in scheme Relates a resource (for example a concept) to a concept scheme in which it is included. External link Internal link	http://cyfun.data.gift/data/CyFun2025_ESSENTIAL External link Internal link
http://cyfun.data.gift/ontology#level External link Internal link	http://cyfun.data.gift/data/level_ESSENTIAL External link Internal link
triple count The number of triples associated with the subject. External link Internal link	17
in dataset Specifies the dataset the subject is part of. External link Internal link	http://data.gift/d/datasets/69E8863AA6CE46D9ACD13109 External link Internal link

type

The subject is an instance of a class.

http://cyfun.data.gift/ontology#Requirement

type

The subject is an instance of a class.

Concept

An idea or notion; a unit of thought.

label

A human-readable name for the subject.

PR.DS-02.2: The organisation shall protect its critical and sensitive information while in transit.

http://cyfun.data.gift/ontology#requirementId

PR.DS-02.2

http://cyfun.data.gift/ontology#foundIn

http://cyfun.data.gift/data/loc_CyFun2025_Booklet_ESSENTIAL_E_p114

has broader

Relates a concept to a concept that is more general in meaning.

http://cyfun.data.gift/data/subcategory_PR.DS-02

note

A general note, for any purpose.

The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered: - Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties. - End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device. - Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information. - Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates. - Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi. - Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.

note

A general note, for any purpose.

note

A general note, for any purpose.

<div><p>The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered:</p><ul><li>Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties.</li><li>End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device.</li><li>Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information.</li><li>Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates.</li><li>Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi.</li><li>Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.</li></ul></div>

note

A general note, for any purpose.

The goal of this control is to ensure that critical and sensitive information remains confidential and unaltered while being transmitted across networks or between systems, especially in environments where data flows between IT and OT layers or across remote sites. In OT contexts, where data may traverse less secure or legacy communication channels (e.g. between control systems, field devices, or remote monitoring stations), protection in transit is essential to prevent interception, manipulation, or leakage. This control builds further on PR.DS-01.1. To enable the protection of the organisation's critical and sensitive information while in transit, the following techniques should be considered: • Encryption: Use strong encryption protocols likeTransport LayerSecurity(TLS) orSecure Sockets Layer(SSL) to encrypt data during transmission. This ensures that even if data is intercepted, it remains unreadable to unauthorised parties. • End-to-End Encryption (E2EE): Implement E2EE, which encrypts data on the sender’s device and only decrypts it on the recipient’s device. • Multi-Factor Authentication (MFA): Require MFA for accessing sensitive information. • Strong Password Policies: Enforce strong password policies, including the use of complex passwords and regular updates. • Virtual Private Networks (VPNs): UseVPNs — eithersite-to-site orremote access — to establish secure tunnels for data transmission, in particular when connecting over untrusted networks such as public Wi-Fi. • Regular Security Audits: Conduct regular security audits to identify and address vulnerabilities in your data transmission processes.

notation

A notation, also known as classification code, is a string of characters such as "T58.5" or "303.4833" used to uniquely identify a concept within the scope of a given concept scheme.

PR.DS-02.2

alternative label

skos:prefLabel, skos:altLabel and skos:hiddenLabel are pairwise disjoint properties.

Data in transit protection

preferred label

A resource has no more than one value of skos:prefLabel per language tag, and no more than one value of skos:prefLabel without language tag.

The organisation shall protect its critical and sensitive information while in transit.

is in scheme

Relates a resource (for example a concept) to a concept scheme in which it is included.

http://cyfun.data.gift/data/CyFun2025

is in scheme

Relates a resource (for example a concept) to a concept scheme in which it is included.

http://cyfun.data.gift/data/CyFun2025_delta_IMPORTANT_to_ESSENTIAL

is in scheme

Relates a resource (for example a concept) to a concept scheme in which it is included.

http://cyfun.data.gift/data/CyFun2025_ESSENTIAL

http://cyfun.data.gift/ontology#level

http://cyfun.data.gift/data/level_ESSENTIAL

triple count

The number of triples associated with the subject.

in dataset

Specifies the dataset the subject is part of.

http://data.gift/d/datasets/69E8863AA6CE46D9ACD13109

References

Inverse links to the subject.

Property	Subject
http://cyfun.data.gift/ontology#hasRequirement External link Internal link	http://cyfun.data.gift/data/subcategory_PR.DS-02 External link Internal link
has narrower Relates a concept to a concept that is more specific in meaning. External link Internal link	http://cyfun.data.gift/data/subcategory_PR.DS-02 External link Internal link

http://cyfun.data.gift/ontology#hasRequirement

http://cyfun.data.gift/data/subcategory_PR.DS-02

has narrower

Relates a concept to a concept that is more specific in meaning.

http://cyfun.data.gift/data/subcategory_PR.DS-02

http://cyfun.data.gift/data/requirement_PR_DS_02_2

other concept-schemes 3

broader concepts 1

Properties and relations

References