Data Storage, Integrity, and Availability - Security Best Practices - Foundation 23.1 - Foundation 23.1 - Ready - OnBase - Essential - Premier - Standard - external - Standard - Essential - Premier

Security Best Practices

Security Best Practices
Foundation 23.1

Data storage, integrity, and availability are as important as data encryption and protecting your environment from malicious attacks. A complete data-security plan must also consider where the physical machines that host OnBase and your data are, and what will happen if those physical locations are offline.

The physical machines related to your OnBase environment should be locked in server rooms with climate control, and access to those server rooms should be granted using the concept of least privilege. Protecting and guaranteeing the safety of the physical infrastructure is just as important as protecting the digital data. For example, if an intruder could walk into the server room and walk off with the database server, or copy its contents to a USB drive, your data is potentially at more risk than from a network-based attack.

Data integrity and availability should be ensured with fully tested, redundant backups. If something happens to the physical location of your data, such as a technical problem, natural disaster, or a fire, your data may become inaccessible, damaged, or completely lost. Readily available backups could mean the difference between recovering from a disaster and going out of business.

To ensure data integrity, all backups must be fully tested. A backup that has not been tested for complete data integrity is not actually a backup for disaster-recovery purposes.