Data at Rest
- 03 Jan 2025
- 1 Minute à lire
- SombreLumière
- PDF
Data at Rest
- Mis à jour le 03 Jan 2025
- 1 Minute à lire
- SombreLumière
- PDF
The content is currently unavailable in French. You are viewing the default English version.
Résumé de l’article
Avez-vous trouvé ce résumé utile ?
Merci pour vos commentaires
To meet the requirements of GDPR, the data that are commonly stored in databases must be encrypted. The OneSpan Authentication Server configuration database is encrypted by default, and the encryption is transparent to the system administrator. The encryption keys are generated automatically. The audit database is not automatically encrypted. For general information about auditing for OneSpan Authentication Server Appliance, see Auditing for OneSpan Authentication Server Appliance.
Features not supporting encryption (data at rest)
Certain features in OneSpan Authentication Server Appliance do not support encryption. Additional steps are required to be GDPR-compliant. Audit, systemlogs, and trace files can be exported and/or downloaded via the OneSpan Authentication Server Appliance Configuration Tool. Always ensure to store these files in a secure location.
You can configure OneSpan Authentication Server Appliance to send system logging information to an external syslog server. The protocol used for this transmission is not encrypted. This option should only be used if the connection between OneSpan Authentication Server Appliance and the syslog server is secure.
Auditing for OneSpan Authentication Server Appliance
If auditing is performed via syslog, it is your organization's responsibility to ensure the security of the data.
Syslog (Linux)
By default, the system log events are stored locally. If event logs are configured to be stored on a remote location, then the remote location containing the log files has to be encrypted (either by encrypting the hard disk or the respective folder).
Cet article vous a-t-il été utile ?