Goals of Security Infrastructure
The primary goal of a security infrastructure design in the protection of corporate assets. The way we protect these assets is by the proper deployment of security components into an organized and cohesive security infrastructure. Assets may include hardware, software, network components and intellectual property. The controls applied in a protection of these assets should be in line with your corporate security goals as well as your corporate security policy documentation. Though only the protection of data is mentioned, it is implied that in protecting the data and ensuring its availability, the underlying systems and networks are also protected.
Depending upon your chosen data classification scheme, each of the following data protection goals should be approximately represented and weighted accordingly:
- Data confidentiality
- Data integrity
- Data availability.
When designing a security infrastructure, target your applications for the best results. Your applications are the closest things to your data as they process, exchange, and store your data. By deciding that your design goals will address data confidentiality, data integrity, and data availability, you will discover that you are securing not only your applications, but your enterprise as well.
0 comments:
Post a Comment