Public ordersmay be based on classified (e.g. restricted or secret) information. In this case, the contractor this has to demonstrate the existence of an IT infrastructure satisfying special requirements as are outlined in security standards like ISO 27001 or the German "IT-Grundschutz-Kataloge" ("IT-Grundschutz Catalogues"). The following paper presents current trends and developments for the protection of restricted information and outlines possible problems as well as their solutions
