Transport Canada
www.tc.gc.ca
Common menu bar links
Institutional links
Innovation
Browse Resources
Innovation Contact Information
Browse By Mode
Browse By Subject
About Us
Archived Data Security Group
The "Archived Data" architecture flows support data archival and retrieval. Archives may include a broad range of information with varied sensitivity. The security considerations for this group are for the general case for archives with nominal data sensitivity. Each specific archive must be evaluated so that appropriate security services can be identified, commensurate with the sensitivity and value of the information contained.
Security Services
| Service | Importance | Service Description |
|---|---|---|
| Confidentiality | Low | The system should prevent unauthorized disclosure of information deemed sensitive. |
| Integrity | Low | The system should ensure that information is protected from unauthorized intentional or unintentional modifications. |
| Availability | Low | The system should protect critical ITS services in order to prevent degradation or denial of the ITS services to users of the services. Single points of failure should be avoided. |
| Authentication | Low | The system should verify the identity of a user and/or other system prior to granting access to a requested resource. |
| Access Control | Low | The system should limit access to the resources of a subsystem to only those users and other subsystems that are properly authorized. After authenticating an entity, the system should have the capability to limit system access to information or resources based on that entity’s access privileges. The system should limit software modifications and upgrades to users and other systems that have authorization. |
Security Objectives
| Objective | Classification | Class Description |
|---|---|---|
| Confidentiality | Low | Information that is generally available to ITS personnel |
| Integrity | Low | Unauthorized or unintended modification of the information could result in minor impact to the operation of the transportation system |
| Availability | Low | Loss of the information could result in minor impact to the operation of the transportation system. |
Security Threats
| Threat | Importance | Threat Description |
|---|---|---|
| Deception | Low | A circumstance or event that may result in an authorized entity receiving false data and believing it to be true. |
| Disclosure | Low | A circumstance or event whereby an entity gains access to data for which the entity is not authorized. |
| Disruption | Low | A circumstance or event that interrupts or prevents the correct operation of system services and functions. |
Architecture flows
- archive analysis requests
- archive analysis results
- archive coordination
- archive management data
- archive management requests
- archive request confirmation
- archive requests
- archive status
- archived data product requests
- archived data products
- asset archive data
- border information archive data
- commercial vehicle archive data
- emergency archive data
- emissions archive data
- government reporting data receipt
- government reporting system data
- intermodal freight archive data
- maint and constr archive data
- multimodal archive data
- other data source archive data
- parking archive data
- probe archive data
- roadside archive data
- toll archive data
- traffic archive data
- transit archive data
- transportation weather information
- traveller archive data
- weather archive data
