The network of branches of state enterprises with sensitive data


Warning: count(): Parameter must be an array or an object that implements Countable in /home/styllloz/public_html/qa-theme/donut-theme/qa-donut-layer.php on line 274
0 like 0 dislike
8 views
Lord, I Want to connect a network of branches gastrectomy to simplify database synchronization.
To them I a third party organization that they operate with Personal data of the WHOLE region.

All the data sinhroniziruete or open channels of the Internet or a specially trained person with a stick that will not fit in the framework of the Law "On personal data".

Management sees this problem, and wishes I helped them solve it, local admin against this motivates the absence of the necessary licenses for this type of work.

The question is, what licenses you need (and whether at all) to me for the organization of the OpenVPN network to the state structure.

Do I have encryption on GOST as I understand it, OpenSSL is not suitable, or rather may come version 1.0.0 which is not yet, but it's the details.

who knows what I would be very grateful.
by | 8 views

4 Answers

0 like 0 dislike
GOST for public institutions is necessary, as far as I know.
State. admin is probably right. And you generally who such that is public enterprises asks you to solve their problems with cryptography? -) Even more interesting. Tag "rollback" for a reason?
by
0 like 0 dislike
Personally, I would do it on cats with modules it from Krypton.
\r
To make such decisions "on the knee" and open the software — do not waste your time. At least to bring all the decision required, and this will need certificates constituent parts. Including cryptography.
Believe me, in such systems, the principle of "reasonable sufficiency" does not work by definition. Only the presence of all documents and certificates.
by
0 like 0 dislike
You are either new checkpointusa UTM-Ki with support of GOST we need to take, or to support domestic producers such as Amicon with their FPSU-ip. Well, or modules RVPN for 38/28's cisoc.
by
0 like 0 dislike
Important thing in this case — a piece of paper (certificate). If money is tight then just buy the cheapest solution, that is, with the FSTEC and the FSB. By the way the formal "man with a stick" is a normal solution that allows you to skip encryption channel, and thus really to save.
by

Related questions

0 like 0 dislike
2 answers
Standard design data architecture?
asked Mar 26, 2019 by Seter17
0 like 0 dislike
6 answers
The standard designation of the cities in intersystem data exchange?
asked Mar 23, 2019 by mpetrunin
0 like 0 dislike
1 answer
The canonical data model?
asked Mar 22, 2019 by ncix

Most popular tags

javascript php css html jquery wordpress python linux web-development mysql android windows java layout c# computer-networks node.js cpp iron yii vue.js 1C-Bitrix react laravel django nginx system-administration search-engine-optimization api ubuntu the-it-education. ajax sql programming hosting cms design apache google-chrome bootstrap Vkontakte macos google network-administration git laptops algorithms regular-expressions unity-game-engine email angular database network-equipment software wooсommerce debian .net ios information-security video law-in-it browsers books parsing wi-fi game-development career htaccess postgresql telegram mikrotik mobile-development ruby-on-rails the-domain-name-system modx Yandex c json opencart Habr freelance vpn asp.net windows-server symfony bots hard-drives math qt DIY audio frontend payment-system bash electronics gulp.js user-interface docker online-shopping
110,608 questions
257,186 answers
0 comments
36,635 users