The Department for International Development follows CESG guidance on the use of the Wi-Fi protected access 2 (WPA2) communications security protocols in order to protect wireless networks carrying protectively marked (up to RESTRICTED/IL3) traffic. The configuration and operation standards for WPA2 are set out in CESG's Infosec Manual Y, Use of WPA2 wireless security in Government systems.
It is not in the interest of the security of the Department for International Development, or that of the public, to disclose detailed information pertaining to electronic breaches of security of the Department’s IT systems. Disclosing such information would enable criminals and those who would attempt to cause disruptive threats to the Department to deduce how to conduct attacks and therefore potentially enhance their capability to carry out such attacks.
Information is a key asset to Government and its correct handling is vital to the delivery of public services and to the integrity of HMG. The security policy framework, the data handling report and the national information assurance strategy produced by the Cabinet Office provide a strategic framework for protecting information that Government handles and put in place a set of mandatory measures which Departments must adhere to.
The Department for International Development is compliant with the security policies contained in the Government security policy framework, including those for information security and assurance.
Depending upon the circumstances, a range of sanctions are available including disciplinary or administrative action, and in extreme or persistent cases, termination of employment/services and, if appropriate, criminal proceedings.