Quiz Entry - updated: 2026.07.05
What are "elementare Gefährdungen" (elementary threats) in IT-Grundschutz?
A standardized BSI catalog of ~47 generic threats (numbered G 0.x) that all blocks reference — the common threat vocabulary of Grundschutz.
Instead of every building block inventing its own threat list, the Kompendium defines one shared catalog of elementary threats, e.g.:
- G 0.18 Mis-planning or lack of adaptation
- G 0.19 Disclosure of sensitive information
- G 0.20 Information or products from an unreliable source
- G 0.22 Manipulation of information
- G 0.28 Software vulnerabilities or errors
- G 0.29 Violation of laws or regulations
- G 0.31 Incorrect use or administration of devices and systems
- G 0.39 Malware
- G 0.46 Loss of integrity of sensitive information
Each block lists which elementary threats are relevant for it (its spezifische Gefährdungslage) and maps its requirements against them in the cross-reference table. The catalog is also the threat basis for the BSI 200-3 risk analysis — a big reason that method is so streamlined.
Tip: Think of G 0.x as the "periodic table of threats" — finite, numbered, and reused everywhere.
Go deeper:
IT-Grundschutz-Kompendium (BSI) — Quelle des Katalogs der elementaren Gefährdungen (G 0.x), auf den alle Bausteine verweisen.