https://www.infra-repository.org/oiar-2013/index.php?action=history&feed=atom&title=Property%3AIntegrityProperty:Integrity - Revision history2026-05-06T13:06:59ZRevision history for this page on the wikiMediaWiki 1.40.0https://www.infra-repository.org/oiar-2013/index.php?title=Property:Integrity&diff=96&oldid=prevDaniel Jumelet at 23:22, 11 November 20122012-11-11T23:22:21Z<p></p>
<p><b>New page</b></p><div>{{Maturity|3}}<br />
{{Pageheaderbox<br />
|pagetype=<br />
|pagename=Integritity<br />
|doctype=Quality Attribute<br />
|version=0.1<br />
|owner=J.A.H. Schoonderbeek<br />
}}<br />
__SHOWFACTBOX__<br />
A facility's/products Integrity, denoted as a single [[Has type::string]], determines to what degree a facility/product is armed and protected against abuse, tampering, vandalism and/or malicious input. The more countermeasures are taken, the higher the degree of integrity is that can be guaranteed. However, applying many provisions to safeguard integrity often has an important drawback: The ease of use (the 'utility-value') of a facility/product will be reduced severely. Therefore, selecting a facility/product with a certain Integrity rating should be in line with the risks that are expected/applicable.<br />
<br />
The following classes of Integrity are defined:<br />
{| class="table" style="text-align:center" border="1" cellspacing="0" cellpadding="5"<br />
!style="background:#{{BGColour03}};"|ordinal<br />
!style="background:#{{BGColour03}};"|value<br />
!style="background:#{{BGColour03}};"|meaning<br />
|-<br />
|{{QAlevelordinal|qa=Integrity|level=NS}}<br />
|[[allows value::NS]]<br />
|[[Quality Attribute NS|{{QAleveldescription|qa=Integrity|level=NS}}]]<br />
|-<br />
|{{QAlevelordinal|qa=Integrity|level=Low}}<br />
|[[allows value::Low]]<br />
|[[Integrity Low|{{QAleveldescription|qa=Integrity|level=Low}}]]<br />
|-<br />
|{{QAlevelordinal|qa=Integrity|level=Medium}}<br />
|[[allows value::Medium]]<br />
|[[Integrity Medium|{{QAleveldescription|qa=Integrity|level=Medium}}]]<br />
|-<br />
|{{QAlevelordinal|qa=Integrity|level=High}}<br />
|[[allows value::High]]<br />
|[[Integrity High|{{QAleveldescription|qa=Integrity|level=High}}]]<br />
|}<br />
<br />
The table below provides an overview of these classes, and summarily lists (some of) the provisions that should be made to get a facility or product rated in a certain class:<br />
{| class="table" style="text-align:center" border="1" cellspacing="0" cellpadding="5"<br />
!style="background:#{{BGColour03}};"|Provision<br />
!style="background:#{{BGColour03}};"|1 - Low<br />
!style="background:#{{BGColour03}};"|2 - Medium<br />
!style="background:#{{BGColour03}};"|3 - High<br />
|-<br />
|Identity Validation<br />
|none<br />
|1-factor<br />
|2-factor<br />
|-<br />
|Permission Validation<br />
||-<br />
|√<br />
|√<br />
|-<br />
|Logging/auditing<br />
|√<br />
|√<br />
|√<br />
|-<br />
|Alerting<br />
||-<br />
||-<br />
|√<br />
|-<br />
|Hardening<br />
||-<br />
||-<br />
|√<br />
|-<br />
|Physical protection (housing and/or construction)<br />
||-<br />
|√<br />
|√<br />
|-<br />
|Management access<br />
|In-band<br />
|In-band encrypted<br />
|Out-of-band<br />
|-<br />
|}</div>Daniel Jumelet