Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Information security is a complex and vital element of maintaining any information system. There are issues that threaten information security and they are generally associated with the areas of systems security, data integrity, and regulatory and legal considerations. Vulnerabilities in web applications, internal processes, and authentication account for most threats to an organization’s information assets. These threats need to be constantly addressed and vulnerabilities continuously remediated.

...

Additionally, the TDL updates its Operating Systems (OS) quarterly at a minimum, and immediately when important security patches are made available.

B. Data Integrity

The TDL has an official backup strategy in which TDL retains:

  • the copy of the data residing on the production server, which is an Amazon S3 volume;
  • nightly snapshots that can be used to restore the entire service to a particular date within the preceding month;
  • and one snapshot from each month, retained for one year. 

Backups are stored in Amazon Elastic Block Store (EBS) snapshots, which is replicated storage with regular systematic data integrity checks.

...

The TDL requires Texas Data Repository contributors to remove, replace, or redact identifying confidential or sensitive information from datasets prior to upload. The Texas Data Repository will not serve this function and takes no responsibility for the inadvertent release of restricted and protected data. Users should contact the TDL and alert them to any data placed into TDL storage and/or infrastructure that requires FERPA, HIPAA, or other federal privacy standards. The TDL can offer advise about dark storage options outside of the Texas Data Repository service for such instances.

...