ND 1643 (Minimum Security Standard)

ND 1643 from the NICC contains controls and measures that constitute the minimum standards required to protect the UK national infrastructure and is applicable to any communications provider that has a direct interconnection with another communications provider.

Benefits of ND 1643 certification

  • Competitive edge. Demonstrates to your stakeholders that you have information security controls in place. 
  • Reduced costs. It’s cheaper and easier to achieve than ISO 27001 and avoids any potential audits being carried out by Ofcom, reducing the disruption and cost to your business. 
  • Protection.  Reduction in security incidents and in the event of a breach provides protection or insurance that you can still operate should the worst happen.

Why choose LRQA for ND 1643 certification?

  • Information Security Specialist

  • LRQA was instrumental in developing the first information security management system standard, BS 7799, the forerunner to ISO 27001, so we are ideally placed to certify you against ND 1643.
  • Business Assurance

  • Our assessors are management system experts qualified in information security and other aspects of IT. Their objective view will provide you with confidence in your security measures providing you with Business Assurance.
  • Flexible Service Options

  • We can provide a range of certification services against ND 1643. These include: Training, optional Gap Analysis, Certification and Surveillance.

What is ND 1643?

In the competitive UK telecoms market, Communications Providers (CP’s) can offer whatever security and resilience levels they wish for individual customers.  However, where providers use shared network elements and facilities or interconnect with each other, those differing service and security levels can pose severe risks to all parties.

The Minimum Security Standard (ND 1643) aims to establish a certifiable baseline for CP’s obliged to comply with Article 13 of EU Directive 2009/140/EC addressed by UK legislation since May 2011.

Ofcom will treat CP’s approved to ND 1643 as demonstrating compliance with the provisions of the Directive (2009/140/EC) and the associated changes to the Communications Act 2003 as it applies to interconnection.

Although developed and published by NICC, an independent industry body NGNuk is acting as scheme owner for NICC to establish this standard within the UK.  It also aiming to get the scheme UKAS accredited to ensure mutual recognition of approvals within the industry.

ND 1643 aims to be a minimum baseline for security controls that all operators can reasonably be expected to meet. 

These are intended to maintain the freedom for operators to choose the level of service security they wish to offer, whilst at the same time ensuring their choices do not have an undue impact on the operators they share facilities or interconnect with.

ND 1643 addresses controls for equipment, location and environmental controls, personnel security and access controls.

It is relevant to nearly all types of interconnection, albeit with specific exclusions of internet peering and traditional SS7 PSTN.

Need to know more?

To find out more about ND1643, give us a call on 0800 783 2179 or email enquiries@lrqa.co.uk.