In the longer term, the use of unmanaged end-user devices to connect to internal applications should be minimised and where it remains essential, a strong network separation within the internal network should exist between PSN and non-PSN elements.
For example, such a separation could involve splitting PSN and non-PSN services into separate 'network zones'. As such, Non-PSN applications would be made accessible via IP addresses that are not shared with any services containing PSN data.
Local authorities have 12 months to implement these changes, prior to their 2014 PSN compliance authorisation.
Sign up for CIO Asia eNewsletters.