Trusted Site Infrastructure (TSI) is a methodology established in 2001 for evaluating and certifying the physical security and availability of data centres. It is based on the TSI.STANDARD criteria catalogue developed by the TÜV NORD GROUP.
With its various assessment aspects, it takes a holistic approach that examines the physical infrastructure of your data centre as well as organisational processes and documentation. The aim is to optimally secure your data centre by implementing and fulfilling the various planning, organisational and technical requirements and thus ensure the highest possible availability of the supplying infrastructure.
The TSI.STANDARD has been developed by experts at TÜV NORD for over 20 years and is an applied industry standard for the physical security and availability of data centres in German-speaking countries. It takes into account findings and many years of experience from over 2,000 projects in the sense of "best practices". It is also based on the recommended measures in the IT baseline protection catalogues and the maximum availability requirements of the German Federal Office for Information Security (BSI). It takes into account the relevant DIN, EN and ISO standards - in particular DIN EN 50600 and ISO/IEC 22237 - as well as VDE regulations and VdS publications. The TSI.STANDARD has been continuously developed since 2002 with the aim of consistently reflecting the state of the art and standards.
Since 2016 (from V4.0), the TSI.STANDARD has also verifiably covered the requirements of DIN EN 50600 in full. EN 50600 supplements can optionally be tested if EN 50600 conformity is to be confirmed as a result.
Since the publication of V4.5, an ISO/IEC 22237-specific supplementary test is also possible. Requirements of the five published parts of the standard (ISO/IEC 22237 parts 1, 2, 3, 4 and 6) are included.
In this way, the TSI.STANDARD can be used to confirm three different norms and standards at the same time: TSI, EN 50600 and ISO/IEC 22237.
The TSI.STANDARD is currently available in version V4.6 from 01.11.2024 and replaces the previous version V4.5 from 01.07.2023.
Sample illustration of current criteria catalog
Our testing and certification services are aimed at companies and organisations that want to bring their data centres up to the highest security and availability standards.
Our target group
The catalogue of criteria is divided into nine thematically separate assessment areas. These are as follows:
Optionally, there are three further assessment areas that lead to additional test statements and possibly also to further certificates.
The high level of expertise of our experts enables a "comply or explain" approach, which offers greater flexibility than the pure application of checklists. This means that a criterion does not necessarily have to be implemented in accordance with the described measure, but that an operator may be just as well positioned with alternative solutions or may even solve a particular challenge better. In this case, "comply or explain" means that special solutions can also be evaluated positively if they are just as effective and reliable and fulfil the protection objective.
Certification according to the TSI.STANDARD allows data centres to be clearly classified into four different levels, which classify both the quality of the supply systems and all other elements. From level 2, the requirements are harmonised with the availability classes of EN 50600 and ISO/IEC 22237 by means of additional criteria.
The TSI.STANDARD is primarily aimed at operators and users of enterprise and colocation data centres. However, they also serve as an orientation and planning basis for specialist planners. Reference is often made to the TSI.STANDARD in the context of tenders and is therefore binding. Depending on the defined level (Level 1 - 4), it describes precise requirements for data centre infrastructures and thus specifies a target corridor.
The TSI.STANDARD is available free of charge for reasons of transparency. You can obtain a digital copy here: Request catalogue
Since 2016, conformity with EN 50600 can also be tested and confirmed with the TSI.STANDARD. Parts 1, 2, 3 and 4-2 of EN 50600 have been fully adapted and integrated into the catalogue. With the publication of V4.5, an ISO/IEC 22237-specific supplementary test is also possible. Conformity with the five published parts of the standard (ISO/IEC 22237 parts 1, 2, 3, 4 and 6) is confirmed by means of an additional certificate. In this way, the data centre operator can obtain three certificates at once: TSI, EN 50600 and ISO/IEC 22237.
In addition to its own criteria, the TSI.STANDARD also takes into account all the requirements of EN 50600 and ISO/IEC 22237, enabling data centres to be aligned with these standards in a structured manner and their requirements to be met in a comprehensible manner.
The principle makes it possible to recognise functionally equivalent measures as valid - even if they do not correspond exactly to the specifications. This means that individual solutions can be assessed, provided they achieve the same level of protection and are documented in a comprehensible manner.