检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
机构地区:[1]内蒙古电子信息职业技术学院,内蒙古呼和浩特010070 [2]中国移动通信集团内蒙古有限公司,内蒙古呼和浩特010020
出 处:《信息安全与通信保密》2013年第8期82-84,共3页Information Security and Communications Privacy
摘 要:金库管理也称为双人操作或多人操作,主要指对于涉及到公司高价值信息的高风险操作,强制要求必须由两人或以上有相应权限的员工共同协作完成操作,通过相互监督、利益制约确保关键操作的安全性,目的是保障重要敏感数据的安全性,规范操作人员的操作行为,防止部分操作人员违规获取、篡改相关信息,避免由于高权限账号被滥用引起高危操作,降低人为操作风险与信息安全风险。金库管理需要确认敏感环节,并设置相应的岗位由多人负责,以达到互相监督的效果。Treasury management, also known as the dual-person operation or multi-person operation for high- risk operations involving high-value information of the company, mandatorily stipulates that these operations must be cooperatively implemented by two or more than two staff members with corresponding authority, thus to ensure the safety of critical operation through mutual supervision and benefit restriction of these staff members. The purpose is to protect the safety of the important sensitive data, normalize behaviors of the operators, prevent certain personnel from illegally accessing and tampering relevant information, avoid the high-authority account abuse and the resulted high-risk operation, reduce the operation risk and the infosec risk. Treasury management must determine the sensitive links, set up the corresponding positions, adopt the system of multi- person job responsibility and realize the effect of mutual supervision.
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.124
