Shulou(Shulou.com)06/01 Report--

Modern information systems are becoming more and more common, but there are many problems in data security. The risk of data integrity not only affects the validity of information, but also affects the guarantee of information correctness. Some government regulations pay special attention to ensuring the accuracy of the data. If the information can be changed without security warning, authorization, or audit trail, the integrity of the information cannot be ensured.

1. Error

Computer and storage failures can damage data and impair data integrity. Defense ensures that the selected storage infrastructure is built through appropriate raid redundancy and archiving of critical data as part of the service. It is recommended that you use integrity verification software to validate and validate data. Because of the nature of the data itself, deterrence has little effect. Data on residual risk technology failure may lead to operational or compliance risks (especially for Sarbanes-Oxley Act requiring listed companies to ensure the integrity of their financial data).

two。 Data deletion and data loss

Data may be destroyed intentionally or unintentionally by computer system failure or misoperation. This data can include financial, organizational, personal, and audit trail information. Defense ensures that critical data is redundant stored and placed in multiple locations. Detect logs for maintenance and audit data deletions. Deterrence maintains education and personnel training for individuals who acquire and manage data. Ensure that the data owner is responsible for authorizing and controlling data and data loss. Once the remaining risk key data is lost, if it is not recovered, it will be lost forever.

3. Data corruption and data tampering

Data changes caused by computer or storage system failures, as well as data changes caused by malicious individuals or malicious software. Fraudulent data modification can also compromise integrity. The Department of Defense uses version control software to maintain its archived copies when modifying important data. Ensure that all data is protected by antivirus software. Maintain all role-based data access controls based on the principle of minimum permissions, known job functions and business requirements. The test uses integrity checking software to monitor and report changes to critical data. Deterrence maintains education and personnel training for individuals who acquire and manage data. Ensure that the data owner is responsible for authorizing and controlling data and data loss. Data on residual risk damage or destruction can cause significant problems, as valid and reliable data are the basis for any computing system.

4. Unexpected modification

The most common reason for the lack of data integrity and unexpected modification may be that the user deliberately changes the data but changes the wrong data, or when the user enters the data incorrectly. Defend against using version control software to modify copies of maintenance files in important data. Ensure that all data is protected by antivirus software. The principle of minimum permissions, job functions and business requirements, and maintain role-based access control for all data. The test uses integrity checking software to monitor and report changes to critical data. Deterrence maintains education and personnel training for individuals who acquire and manage data. Ensure that data owners are responsible for voting rights and control data and data losses. Data on residual risk damage or destruction can cause significant problems, as valid and reliable data are the cornerstone of any computing system. If there has been a problem of data tampering, you can call for help from website security companies. Domestic security companies such as SINESAFE, Green Alliance, Qiming Star, Eagle Shield Security, and so on are all security companies that solve data tampering.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.