U.S. flag

An official website of the United States government, Department of Justice.

NCJRS Virtual Library

The Virtual Library houses over 235,000 criminal justice resources, including all known OJP works.
Click here to search the NCJRS Virtual Library

AUDIT AND DATA CONTROL IN LAW ENFORCEMENT INFORMATION SYSTEMS (FROM LAW ENFORCEMENT DATA PROCESSING SYMPOSIUM, APRIL 18-19, 1977 BY ALLEN L PEARSON 2D - SEE NCJ-45130)

NCJ Number
45133
Author(s)
R E MCDONELL
Date Published
1977
Length
34 pages
Annotation
GUIDELINES FOR ASSURING DATA SECURITY IN LAW ENFORCEMENT INFORMATION SYSTEMS ARE PRESENTED.
Abstract
AN INTRODUCTORY SECTION TOUCHES BRIEFLY ON MATTERS RELATED TO THE PHYSICAL SECURITY OF COMPUTER EQUIPMENT AND TO PRIVACY ISSUES. THE PREPONDERANCE OF THE DISCUSSION IS DEVOTED TO THE TOPIC OF DATA SECURITY, I.E., THE PROTECTION OF DATA AGAINST UNAUTHORIZED OR ACCIDENTAL MODIFICATION, DESTRUCTION, OR DISCLOSURE. DATA SECURITY GUIDELINES, DRAWN FROM AN INTERNATIONAL BUSINESS MACHINES CORPORATION PUBLICATION, COVER SYSTEMS DESIGN CONSIDERATIONS, USER IDENTIFICATION, USER AUTHORIZATION, DATA FILE PROTECTION, AND AUDIT PROCEDURES. IT IS POINTED OUT THAT LAW ENFORCEMENT AGENCIES MUST FIRST DETERMINE HOW MUCH RISK THEY FACE WITH REGARD TO DATA SECURITY AND THEN DECIDE HOW MUCH CAN BE SPENT TO REDUCE THAT RISK TO AN ACCEPTABLE LEVEL. IN LAW ENFORCEMENT AND CRIMINAL JUTICE INFORMATION SYSTEMS, MOST OF THE INFORMATION ON FILE IS AVAILABLE FROM OTHER SOURCES. THEREFORE THE LEVEL OF SECURITY REQUIRED REALLY IS THAT WHICH WOULD LEAD POTENTIAL VIOLATORS TO LOOK TO OTHER SOURCES. THE GREATEST DATA SECURITY PROBLEM IN LAW ENFORCEMENT PROBABLY IS THE CARELESS OR INADVERTENT DISCLOSURE OF INFORMATION BY EMPLOYEES WHO ARE PROPERLY AUTHORIZED BUT NOT PROPERLY INDOCTRINATED IN THE IMPORTANCE OF LIMITING DISCLOSURE. (LKM)

Downloads

No download available

Availability