- Listen to our monthly AppSec Stats Flash podcast
- LEARN MORE
Integrity controls are designed to manage the integrity of data, which is a fundamental component of information security. In its broadest use, “data integrity” refers to the accuracy and consistency of data stored in a database, data warehouse, data mart, or other construct.
Integrity controls are an integral part of applications, helping to enforce an organization’s data integrity goals. They can be used to prevent semantic user errors, to protect against unauthorized changes in software code, to help prevent vulnerabilities, and to stop malicious code from entering a system.
Integrity controls apply rules that verify the database and database operations, ensuring that data is not corrupted by applying integrity control features that are informed by business processes, computer edits, and other types of security infrastructure.
Integrity controls should best be enforced at every layer of the application, ensuring that all user input is correctly sanitized and encoded to prevent misuse by malicious actors.