IT Baseline Protection Manual - The Information Warfare Site

Safeguard Catalogue - Communications Remarks
____________________________________________________________________ .........................................
Data confidentiality and integrity requirements:
The higher these requirements are, the more important it is to prevent data
from being intercepted, copied or manipulated by unauthorised persons
during transport. Encryption or cryptographic measures against
manipulation must be considered for such data transmissions. Secure
containers and routes must be selected for physical transport, and the
degree and usefulness of encryption procedures should also be evaluated
here.
Storage modes
As part of the data backup policy, it must also be established whether storage
or erasure deadlines need to be maintained for certain data.
Deadlines:
If storage deadlines need to be maintained, this can be achieved by
archiving a data backup generation. In the case of extended storage
deadlines, additional consideration must be given to the required inventory
of reading devices and the fact that a refresh (renewed import of
magnetically stored data) might become necessary, as such media are
demagnetised over long periods of time, so that their data content is
eventually lost.
If erasure deadlines are to be maintained, appropriate organisation is
necessary; availability of the required erasure devices must also be
ensured. Erasure is to be initiated and executed at the specified intervals.
Additional controls:
- Are data backup procedures updated in accordance with changes to the IT
system?
- Are data restoration exercises carried out periodically?
- Is adherence to the conditions stipulated in the data backup policy being
checked?
- Are the persons responsible for data backup sufficiently trained?
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000