Author: Joëlle Cirelli, BIT (Federal Office of Information Technology and Telecommunications)
Source: https://www.bit.admin.ch/de/meteoschweiz-2025-de-83
Publication Date: December 9, 2025
Reading Time: approx. 4 minutes
Executive Summary
Since September 2024, MeteoSwitzerland has been directly connected to the federal network, replacing a cumbersome gateway application with Single Sign-On. The solution significantly reduces administrative effort and improves user experience for 390 employees. The BIT has created a technical blueprint that serves as a template for other federal organizations and demonstrates how federated IT structures can be networked more efficiently.
Critical Guiding Questions
Freedom & Self-Responsibility: How does direct network connection preserve MeteoSwitzerland's autonomy while maintaining security standards?
Accountability & Governance: Who bears responsibility for data security and compliance in the new one-way trust architecture?
Transparency: What security risks arise from the expanded trust relationship between the BIT resource forest and MeteoSwitzerland's Active Directory?
Innovation & Scalability: How transferable is this solution to other decentralized federal organizations without compromising security?
Efficiency Gains: Can administrative effort be quantified, and where do new dependencies on the BIT emerge?
Scenario Analysis: Future Perspectives
| Time Horizon | Expected Development |
|---|---|
| Short-term (1 year) | Stabilization of new infrastructure; monitoring for security incidents; initial adoption by other federal offices |
| Medium-term (5 years) | Standardization of one-way trust model for 5–10 additional decentralized organizations; cost savings through automation |
| Long-term (10–20 years) | Complete integration of federated IT structures; potential consolidation of redundant Active Directory systems |
Core Topic & Context
MeteoSwitzerland, the Federal Office of Meteorology and Climatology, was previously not directly integrated into the federal network. Employees had to manually connect via a gateway application (similar to VPN) to access BIT services such as SAP systems or intranets. User data was maintained redundantly—an inefficient process that prompted modernization due to the end of life of the gateway solution.
Key Facts & Figures
- 390 employees of MeteoSwitzerland benefit from the new connection
- September 2024: Go-live of direct federal network integration
- Single Sign-On: Authentication required only in own domain
- One-way Trust: Asymmetrical trust relationship between BIT resource forest and MeteoSwitzerland's Active Directory
- Blueprint Approach: Solution is adaptable and expandable for other federal organizations
- ⚠️ Quantified Effort Reduction: No concrete figures on time savings or cost reduction mentioned
Stakeholders & Affected Parties
| Beneficiaries | Affected Parties | Risks |
|---|---|---|
| MeteoSwitzerland Employees – easier access to services | BIT – expanded responsibility for security | Dependency risk on BIT during outages |
| BIT – standardizability for other offices | Other Federal Offices – pressure to implement similar solutions | Security gaps through expanded trust boundaries |
| Federal Administration Overall – IT efficiency | Data Protection & Compliance – more complex governance | Loss of independence in IT decisions |
Opportunities & Risks
| Opportunities | Risks |
|---|---|
| Efficiency Gains: Fewer manual connections, Single Sign-On saves time | Security Boundary Shift: One-way trust expands attack surface |
| Standardizability: Blueprint for other decentralized organizations | Vendor Lock-in: Dependency on BIT infrastructure model |
| Better User Experience: More comfortable daily work for 390 employees | ⚠️ Unclear Emergency Scenarios: How does access work during BIT outages? |
| Cost Savings: Less administrative effort and gateway licenses | Scaling Risks: Does the model work with 50+ organizations? |
Action Relevance
For Decision-Makers at BIT:
- Document concrete KPIs (time, cost savings) for business case validation
- Develop security audits and incident response procedures for one-way trust scenarios
- Create clear escalation paths for network outages
For Other Federal Offices:
- Evaluate the adaptability of the blueprint to your IT architecture
- Clarify dependencies and governance models before migration
- Plan training for employees and IT teams
For MeteoSwitzerland:
- Monitor system stability and security incidents during the first 12 months
- Document lessons learned for other organizations
- Establish feedback channels with BIT for continuous optimization
Quality Assurance & Fact-Checking
- [x] Central statements verified (publication date, organization names, technical details): 11.12.2025
- [x] Unconfirmed data marked with ⚠️ (effort reduction, emergency scenarios)
- [x] Technical architecture descriptions validated
- [x] Bias check: Text is predominantly positive toward the solution; critical security aspects are mentioned but not analyzed in depth
Supplementary Research
Recommended Sources for Further Reading:
BIT Security Standards: https://www.bit.admin.ch – Official documentation on network zone policies and trust models
Active Directory Federation Services (ADFS): Microsoft documentation on one-way trust and security implications
Federal Administration IT Governance: Federal Chancellery, Digital Transformation and ICT Management (DTI) – Strategic guidelines for federated IT architecture
Bibliography
Primary Source:
Cirelli, Joëlle (2025): MeteoSwitzerland – Less Effort, More Weather and Climate: Facilitated Access to IT Resources. BIT, December 9, 2025.
https://www.bit.admin.ch/de/meteoschweiz-2025-de-83
Supplementary Sources:
- Federal Office of Information Technology and Telecommunications (BIT): Product Delivery Cycle – DevOps Orientation Guide. December 9, 2025
- Federal Chancellery, DTI Division: Digital Transformation and ICT Management of Federal Administration. https://www.bk.admin.ch
- MeteoSwitzerland: Tasks and Services of the Federal Office of Meteorology and Climatology. https://www.meteoschweiz.admin.ch
Verification Status: ✓ Facts checked on December 9, 2025
This text was created with support from Claude Haiku.
Editorial Responsibility: clarus.news | Fact-Checking: December 9, 2025