Assessing the security of network equipment.
This document provides guidance on how operators should assess the security of vendorās security processes and vendor equipment and is referenced in the Telecom Security Act Code of Practice.
The purpose of the guidance is to allow operators to objectively assess the cyber risk due to use of the vendorās equipment. This is performed by gathering objective, repeatable evidence on the security of the vendorās processes and network equipment.
