The design and implementation of data security management and control platform

Abstract

This paper proposes a new data security management and control platform to solve the problem that it lacks differentiated protection for the mass and heterogeneous data assets of enterprises, the data asset protection strategy is at a much coarse-grained level, and the enterprise security products are concerned only with their own protected equipment, lacking a unified security view, and unable to conduct big data tracking and forensics. First, it assigns the confidentiality, integrity and availability of data assets based on three characteristics of data security (confidentiality C, integrity I, usability A), to better reflect the business value of data assets, and it distinguishes the levels of data assets value, to improve the utilization of security protection tools. Then the platform automatically assigns specific data levels according to data classification, making finegrained access control possible. It also studies the construction method of safety view, so as to effectively solve the problem that it lacks differentiated protection for corporate data assets, the data asset protection strategy is at a much coarsegrained level and lacks a unified security view, and unable to conduct big data tracking and forensics.