6 Infrastructure Requirements

6.1.1 Wherever possible, the infrastructure should comply with the standards defined in the E-government Unit interoperability standards.

6.2 Security core requirements

• S/MIME v3 for secure SMTP e-mail (port 25)

• HTTPS for secure browser (port 443)

• 3DES (168-bit) for encryption moving to AES when generally available (RC2/4 128 are not recommended by GCSB, server software is readily configured to require 3DES, and clients automatically negotiate up using standard SSL)

• S.E.E. Key X.509 version 3 certificates

6.3 Software core requirements

• Ability to interface to Microsoft, Lotus and Groupwise messaging and calendaring systems.

• Ability to integrate with S.E.E. Key infrastructure - in particular certificate status checking via CRLs and/or OCSP

• Ability to integrate with S.E.E. Directory

6.4 Hardware core requirements

• None identified

6.5 Network core requirements

• TCP/IP

• SMTP for e-mail, S/MIME v3 for secure e-mail (port 25)

• HTTP for browser (port 80), HTTPS for secure browser (port 443)

• Department firewalls and browsers will need to be configured to work with the shared workspace, for example it is likely that javascript will be required for a rich shared workspace environment, yet some agencies disable javascript in browsers and through firewalls.  This may require "trusted" servers, identified by certificates.