Arkansas Administrative Code
Agency 200 - Office of Information Technology
Rule 200.00.06-001 - Physical and Logical Security Standards
Current through Register Vol. 49, No. 9, September, 2024
1.0 Purpose
Information technology (IT) assets handled by computer systems must be adequately protected against unauthorized modification, disclosure, or destruction. Physical security is necessary to uphold access control and to limit information retrieval to a need to know basis.
2.0 Scope
This standard statement applies to all state agencies, institutions of higher education, boards and commissions.
3.0 Background
The Arkansas Information Systems Act of 1997 (Act 914, 1997) gives the Office of Information Technology the authority to define standards, policies and procedures to manage the information resources within the state. This is accomplished through work with a multi-agency working group known as the Shared Technical Architecture Team.
In addition, Act 1042 of 2001 states that the Executive Chief Information Officer oversees the development of information technology security policy for state agencies.
4.0 References
5.0 Standard
6.0 Procedures
7.0 Revision History
Date |
Description of Change |
05/01/2006 |
Promulgated |
8.0 Definitions
A system designed to prevent unauthorized access to or from a private network. Firewalls can be implemented in hardware or software, or a combination of both.
A Client/Server architecture provides a scalable architecture, whereby each computer or process on the network is either a client or a server. Server software generally, but not always, runs on powerful computers dedicated for exclusive use to running business applications or storing data bases. Client software on the other hand generally runs on common PCs or workstations. Clients get all or most of their information and rely on the application server for things such as configuration files, business application programs, or to offload computer-intensive application tasks back to the server in order to keep the client computer (and client computer user) free to perform other tasks.
A workstation is attended at all times by at least one person.
9.0 Resources
10.0 Inquiries
Direct inquiries about this standard to:
Office of Information Technology
Shared Technical Architecture
124 West Capitol Avenue Suite 990, Little Rock, Arkansas 72201
Phone: 501-682-4300
FAX: 501-682-2040
Email: SharedArchitecture@arkansas.gov
OIT policies can be found on the Internet at: http://www.cio.arkansas.gov/techarch