• Home

  • Documents

  • In Support of Security Standards Randy Robertson
12
In Support of In Support of Security Security Standards Standards Randy Robertson Randy Robertson

In Support of Security Standards Randy Robertson

Embed Size (px)

Citation preview

Page 1: In Support of Security Standards Randy Robertson

In Support of In Support of Security Security

StandardsStandardsRandy RobertsonRandy Robertson

Page 2: In Support of Security Standards Randy Robertson

Data SecurityData Security

Many companies use data for critical Many companies use data for critical functionsfunctions

Data often private or confidentialData often private or confidential Highest organizational priority is to Highest organizational priority is to

keep data from corruption or keep data from corruption or unauthorized accessunauthorized access

Most use Database Management Most use Database Management Systems to manage and secure dataSystems to manage and secure data

Page 3: In Support of Security Standards Randy Robertson

ProblemsProblems

Treatment of DataTreatment of Data Types of DataTypes of Data Different OrganizationsDifferent Organizations

Difficult to work with other Difficult to work with other companiescompanies

HIPAA legislation – just the HIPAA legislation – just the beginning?beginning?

Page 4: In Support of Security Standards Randy Robertson

ProblemsProblems

Many organizations have several Many organizations have several options when designing or updating options when designing or updating their database system.their database system. Each has different options and Each has different options and

configurationsconfigurations Difficult to select the right systemDifficult to select the right system

Page 5: In Support of Security Standards Randy Robertson

ResearchResearch

Iachello (2003)Iachello (2003) Argues for adding data protection Argues for adding data protection

standardsstandards EU more strict regarding data then U.S.EU more strict regarding data then U.S. Points raisedPoints raised

Regulations changing among different nationsRegulations changing among different nations Confusion regarding 3 areas of dataConfusion regarding 3 areas of data

LegislationLegislation TechnologyTechnology Process DesignProcess Design

Page 6: In Support of Security Standards Randy Robertson

ResearchResearch

Vieira (2005)Vieira (2005) Not all data is considered criticalNot all data is considered critical DBMS classificationDBMS classification

Security Class LevelSecurity Class Level Class 0 to Class 5Class 0 to Class 5

Security Requirements FulfillmentSecurity Requirements Fulfillment Percentage rating from 0 to 100Percentage rating from 0 to 100 Compares DBMS within the same class levelCompares DBMS within the same class level

Page 7: In Support of Security Standards Randy Robertson

SolutionSolution

Agree with both papersAgree with both papers Change in Vieira’s proposalChange in Vieira’s proposal

Add measure for past historyAdd measure for past history Flaws and VulnerabilitiesFlaws and Vulnerabilities

Page 8: In Support of Security Standards Randy Robertson

SolutionSolution

Standards BodyStandards Body Create a Security standardCreate a Security standard

Based on data levelsBased on data levels Create a DBMS rating systemCreate a DBMS rating system

Ability to merge with Security StandardAbility to merge with Security Standard

OrganizationOrganization Review Standards to classify data usedReview Standards to classify data used Select DBMS to meet the needsSelect DBMS to meet the needs

Page 9: In Support of Security Standards Randy Robertson

SolutionSolution

Security Standards BenefitsSecurity Standards Benefits Liability insurance could be easier and Liability insurance could be easier and

cheaper to purchase if standards are cheaper to purchase if standards are followedfollowed

Following standards may show due Following standards may show due diligence of the organization if they diligence of the organization if they have litigation due to a security breachhave litigation due to a security breach

Page 10: In Support of Security Standards Randy Robertson

SolutionSolution

DBMS Standards BenefitsDBMS Standards Benefits Allow organizations the ability to Allow organizations the ability to

identify and adapt security needs identify and adapt security needs quickly. quickly.

Can help companies do business in Can help companies do business in other countriesother countries

Can also satisfy requirements when Can also satisfy requirements when working with vendors or alliance working with vendors or alliance partners. partners.

Page 11: In Support of Security Standards Randy Robertson

SolutionSolution

Possible drawbacksPossible drawbacks Companies could be forced to update Companies could be forced to update

system and change DBMSsystem and change DBMS Costs incurred from upgradeCosts incurred from upgrade Possible attacks if not securePossible attacks if not secure

DBMS would probably not support DBMS would probably not support solutionsolution Highlight flaws and vulnerabilitiesHighlight flaws and vulnerabilities

Page 12: In Support of Security Standards Randy Robertson

Questions?Questions?


IN THIS ISSUE CONTINUING PROFESSIONAL DEVELOPMENT...Edzel Escala, AScT Randy Meszaros, AScT, PMP, CET Heather Robertson, AScT Paul Sawyer, CTech Paul Tomei, AScT Ken Zeleschuk, AScT,

IN THIS ISSUE CONTINUING PROFESSIONAL DEVELOPMENT...Edzel Escala, AScT Randy Meszaros, AScT, PMP, CET Heather Robertson, AScT Paul Sawyer, CTech Paul Tomei, AScT Ken Zeleschuk, AScT,

Documents
Interviewing in 2013 Randy Block randy@randyblock.com

Interviewing in 2013 Randy Block [email protected]

Documents
Final Legislative Update Final Legislative...voters as a referendum. SB 182 – Fence Detection Systems: Narrowly Define and Prohibit Local Government Bans (Sen. Randy Robertson, 29th)

Final Legislative Update Final Legislative...voters as a referendum. SB 182 – Fence Detection Systems: Narrowly Define and Prohibit Local Government Bans (Sen. Randy Robertson, 29th)

Documents
An Inviting Community Following Christ For Life · **Children Grade 1-6 will be going with Rev. Craven this morning to ... Randy Southworth, guitar Readers: John Robertson, Kelsey

An Inviting Community Following Christ For Life · **Children Grade 1-6 will be going with Rev. Craven this morning to ... Randy Southworth, guitar Readers: John Robertson, Kelsey

Documents
Robertson Street

Robertson Street

Documents
Nathan D.M. Robertson nrobertson@law.umaryland.edu Using ERM Systems and Standards to Communicate Rights and Permissions “The Changing Standards Landscape:

Nathan D.M. Robertson [email protected] Using ERM Systems and Standards to Communicate Rights and Permissions “The Changing Standards Landscape:

Documents
Hosted by The Percheron Horse Association of America€¢ Judge 2–Randy Robertson, Douro-Dummer, ON Canada • Championship Judge– Corbly Orndorff, Waynesburg, PA • Two-Year

Hosted by The Percheron Horse Association of America€¢ Judge 2–Randy Robertson, Douro-Dummer, ON Canada • Championship Judge– Corbly Orndorff, Waynesburg, PA • Two-Year

Documents
CIM Standards: Status, Testing, and Collaboration Randy Rhodes CIMug Utility Co-Chair

CIM Standards: Status, Testing, and Collaboration Randy Rhodes CIMug Utility Co-Chair

Documents
Phil robertson

Phil robertson

Documents
LitoralPress Monitoreo y análisis de medios, grupo IFAT · Ro&igo Alvarez Zenteno, René Cortázar Sanz, Patri- cio Donoso Ibáñez, Alejandro Ja&esic Marinovic, ... Randy Robertson

LitoralPress Monitoreo y análisis de medios, grupo IFAT · Ro&igo Alvarez Zenteno, René Cortázar Sanz, Patri- cio Donoso Ibáñez, Alejandro Ja&esic Marinovic, ... Randy Robertson

Documents
Christina Robertson

Christina Robertson

Entertainment & Humor
Robertson ch07

Robertson ch07

Documents
HIT Standards Committee Transcript October 17, 2012 Standards... · MacKenzie Robertson – Office of the National Coordinator Thanks, Floyd. Jamie Ferguson? Jamie Ferguson – Kaiser

HIT Standards Committee Transcript October 17, 2012 Standards... · MacKenzie Robertson – Office of the National Coordinator Thanks, Floyd. Jamie Ferguson? Jamie Ferguson – Kaiser

Documents
Pat Robertson Executive Director September 2014 GASB Pension Standards Update

Pat Robertson Executive Director September 2014 GASB Pension Standards Update

Documents
Eighth Grade - Home - Robertson County Schools · The standards below begin at grade 6; standards for K–5 reading in history/social studies, science, and technical subjects are

Eighth Grade - Home - Robertson County Schools · The standards below begin at grade 6; standards for K–5 reading in history/social studies, science, and technical subjects are

Documents
Auto Accident Injury Lawyers Robertson & Robertson,

Auto Accident Injury Lawyers Robertson & Robertson,

Documents
Robertson ch12

Robertson ch12

Technology
Robertson · PDF fileby Lyndy Scott, REPS ... Page 5 Robertson News Edition 109 October 2015 Garden Gates opening for Robertson ... Robertson Fire Brigade,

Robertson · PDF fileby Lyndy Scott, REPS ... Page 5 Robertson News Edition 109 October 2015 Garden Gates opening for Robertson ... Robertson Fire Brigade,

Documents
Gayle Robertson

Gayle Robertson

Documents
Robertson ch09

Robertson ch09

Documents
CIM Standards: Status, Testing, and Collaboration Randy Rhodes CIMug Utility Co-Chair EMS Users Conference September 15, 2009

CIM Standards: Status, Testing, and Collaboration Randy Rhodes CIMug Utility Co-Chair EMS Users Conference September 15, 2009

Documents
ANDY ROBERTSON ANDY ROBERTSON - IOSH · ROBERTSON ANDY ASSOCIATES ANDY ROBERTSON ASSOCIATES ROBERTSON ANDY ASSOCIATES ANDY ROBERTSON ASSOCIATES EHS at the Heart of Business Pragmatic

ANDY ROBERTSON ANDY ROBERTSON - IOSH · ROBERTSON ANDY ASSOCIATES ANDY ROBERTSON ASSOCIATES ROBERTSON ANDY ASSOCIATES ANDY ROBERTSON ASSOCIATES EHS at the Heart of Business Pragmatic

Documents
Strategic Content Alliance Standards Guide · standards/#more-114 and Brian Kelly, Scott Wilson, and Randy Metcalf (2007) Openness in Higher Education: Open Source, Open Standards,

Strategic Content Alliance Standards Guide · standards/#more-114 and Brian Kelly, Scott Wilson, and Randy Metcalf (2007) Openness in Higher Education: Open Source, Open Standards,

Documents
Robertson ch10

Robertson ch10

Documents
Justification of Review of Water Quality Standards for Nutrients and other Constituents Randy Pahl, NDEP

Justification of Review of Water Quality Standards for Nutrients and other Constituents Randy Pahl, NDEP

Documents
Si robertson

Si robertson

Education
S Robertson Boulevard - LoopNet...location map130 S Robertson Blvd. | LOS ANGELESRobertson Blvd Beverly Boulevard ROBERTSON BOULEVARD Alden Drive 3rd Street NORTH ROBERTSON BOULEVARD

S Robertson Boulevard - LoopNet...location map130 S Robertson Blvd. | LOS ANGELESRobertson Blvd Beverly Boulevard ROBERTSON BOULEVARD Alden Drive 3rd Street NORTH ROBERTSON BOULEVARD

Documents
SUPERVISED VISITATION NETWORK (SVN) STANDARDS FOR ... · production of the new standards. Thank you Randy Fallows, SVN Webmaster, ITS, for all your technological support on this project

SUPERVISED VISITATION NETWORK (SVN) STANDARDS FOR ... · production of the new standards. Thank you Randy Fallows, SVN Webmaster, ITS, for all your technological support on this project

Documents
Vehicle Certification in Australia Peter Robertson Assistant Secretary Vehicle Safety Standards (Administrator of Vehicle Standards)

Vehicle Certification in Australia Peter Robertson Assistant Secretary Vehicle Safety Standards (Administrator of Vehicle Standards)

Documents
Robertson OLC EOC ND - highered.mheducation.comhighered.mheducation.com/sites/dl/free/0070914176/120500/Robertson... · 2.53 Auditing Standards Case Study. Ray, the owner of a small

Robertson OLC EOC ND - highered.mheducation.comhighered.mheducation.com/sites/dl/free/0070914176/120500/Robertson... · 2.53 Auditing Standards Case Study. Ray, the owner of a small

Documents