Designing A Safe And Secure Infrastructure To Prevent Loss Of System Integrity

Businesses also focus on constructing a safe and secure environment so that thieves will not walk away with the assets. Physical security safeguards are installed like fences and lights for protection. However, this is not enough because the workstation or network server must also be protected to prevent the loss of confidentiality and system integrity.

One of the objectives of an ecommerce website is secure design. The logical solution is to create an environment with access points, firewalls, intrusion detection and response systems. Many organizations make use of firewalls to map and show adherence to different standards and regulations.

Once the selected controls are decided, and incorporated, they must be tested before the infrastructure is utilized. Testing can be undertaken by an internal IT staff, however, supervision and control is required in testing because the tests may not as thorough as required or there may be some hidden vulnerabilities due to incorrect control implementation or selection.

Testing must include scripts and software which must be reviewed prior to use. Review of scripts must be line by line to make sure that they do not create or exploit existing vulnerabilities. Since scripting languages are interpreted languages, the source can be easily read and modified by anyone who is running the script.

It is important for scripts within the environment to be run only by authorized persons. Only the authors of the script must be knowledgeable in securing coding methods for the language of choice. This way, the users of the environment will have a defensible infrastructure.

