We use some essential cookies to make this website work.
We’d like to set additional cookies to understand how you use GOV.UK, remember your settings and improve government services.
We also use cookies set by other sites to help us deliver content from their services.
You have accepted additional cookies. You can change your cookie settings at any time.
You have rejected additional cookies. You can change your cookie settings at any time.
Departments, agencies and public bodies
News stories, speeches, letters and notices
Detailed guidance, regulations and rules
Reports, analysis and official statistics
Consultations and strategy
Data, Freedom of Information releases and corporate reports
Cyber Security Model information about the proportionate security controls to be implemented and evidence to be submitted as part of all MOD contracts.
Guidance for small businesses on how to put simple cyber security measures in place.
This service allows the Ministry of Defence (MOD) and industry partners to manage cyber risk across the defence supply chain.
This publication sets out rules for digital verification services supporting Registered Bodies and Responsible Organisations to conduct identity verification as part of Disclosure and Barring Service checks.
A guide for designated operators of essential services for healthcare in England explaining the practical impact of the NIS Regulations.
A guide for organisations interested in being an 'attribute service provider' certified against the UK digital identity and attributes trust framework.
This guidance, also known as Good Practice Guide (GPG) 44, will help you choose an authenticator that will give you the level of protection that’s most suitable for users accessing your service.
Information about which code you should open and how to do it securely.
Guidance on how to report a security vulnerability on any Ministry of Defence service or system, such as the websites of the Royal Air Force, British Army and Royal Navy.
Lessons learnt from the 'Secure by Design' approach adopted by MOD which ensures security is designed into any project delivering capabilities or services.
Guidance on creating, binding, scoring and sharing attributes for organisations certified against the UK digital verification services trust framework as an attribute service provider, or interested in understanding more abo…
Detail on the first globally-applicable industry standard on internet-connected consumer devices.
The Government's Code of Practice for Consumer Internet of Things (IoT) Security for manufacturers, with guidance for consumers on smart devices at home.
Guidance for organisations certified against the UK digital identity and attributes trust framework as an 'attribute service provider'.
Resources to help local authorities secure their connected places ("smart cities") against cyber threats. This is the updated beta release.
Guidance on how to report a vulnerability on an HM Land Registry service or system.
A call for information to help government understand current capabilities and practical constraints in the development of secure AI computing systems.
A pre-release of the next version of the supplementary code for digital right to work checks
Recommendations from the Counter Ransomware Initiative on how organisations can build supply chain resilience.
Guidance on creating, storing and checking evidence of someone’s identity that relies on a ‘vouch’, a formal declaration from a third-party that knows them and is willing to confirm their identity.
Don’t include personal or financial information like your National Insurance number or credit card details.
To help us improve GOV.UK, we’d like to know more about your visit today. Please fill in this survey (opens in a new tab and requires JavaScript).