First off, definitely talk to a lawyer with expertise in that area. That being said, here are some things that I know can help you out:
1. If the data should not be updated, don't let the user account that connects to the database have access to the UPDATE or DELETE verbs. Then you don't have to worry so much about someone accidentally putting in code that would update or delete data. 2. Do daily offsite backups to a secure location. When I'm dealing with electronic signatures, one of the concepts that is important to keep in mind is the chain of custody. Once a person has done something, who has access to it up til the point that a reviewer looks at it? If you back it up and put it in a place that people don't generally have access to, you can show that multiple generations of the data (multiple backups) all have the same information, unchanged. 3. Sql Server has audit abilities. I haven't gotten deeply into them and if it is something you really want to nail down, I'd get a db security consultant that has experience with sql server audit logging, but here is a decent place to start: http://msdn.microsoft.com/en-us/library/cc280386.aspx Hope that helps, Judah On Thu, Apr 22, 2010 at 12:30 PM, Justin Scott <jscott-li...@gravityfree.com> wrote: > > Hi all, not a CF-specific question but I'm hoping someone can point me in > the right direction. We're building an application where some information > stored in our database could potentially be subpoenaed to court as evidence. > One of the issues brought up by the attorneys is the integrity of the data > stored in the database and how it could be proven in court that the data has > not been altered since it was entered into the database. Any ideas on where > to start looking for a solution to that? The front-end is ColdFusion with a > MS-SQL back-end. This is a new area for me, so it's interesting, but I > don't have any points of reference to work from either. Any insight is > appreciated. Thanks! > > > -Justin > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:333099 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
