The National Cyber Security Centre (NCSC) has published guidance for organisations on using video conferencing technology.
It has also urged public authorities using the technology for sensitive meetings to follow its cloud security principles.
This is the latest in a number of initiatives to help public and private sectors respond to the coronavirus pandemic.
“With so many of us at home due to the Covid-19 lockdown, video conferencing technology has an important role to play,” NCSC said. “It can help us to maintain crucial working and personal relationships during this period of social distancing.”
The new guidance for IT and security professionals is focused on choosing, configuring and deploying the video conferencing services for their organisations.
It highlights steps such as only downloading software from trusted source, checking online to understand which app is right for the organisation, making sure the account is protected with a strong password, and understanding what features are available.
It also places an emphasis on controlling the environment for calls, pointing out that the organiser should know who is involved and ensure that the camera does not show anything sensitive in the background.
14 principles
The cloud security principles cover 14 points, ranging from data in transit protection to governance frameworks to supply chain security, and answer questions on their goals and how they can be implemented.
The guidance has a relevance throughout the public sector, particularly for local authorities which recently received the green light to run their public meetings through video conferencing for the duration of the pandemic.
It follows the publication of guidance on various aspects of the process by other organisations including the Local Government Association, Ministry of Housing, Communities and Local Government, and the London Office of Technology and Innovation, and on the relevant procurement by the Crown Commercial Service.
Image from NCSC, Open Government Licence v3.0
