{"id":4274,"date":"2017-12-19T03:09:53","date_gmt":"2017-12-19T03:09:53","guid":{"rendered":"http:\/\/fusionsol.wp.knows.live\/?page_id=4274"},"modified":"2025-10-02T09:58:40","modified_gmt":"2025-10-02T02:58:40","slug":"security-frame-work","status":"publish","type":"page","link":"http:\/\/www.fusionsol.com\/en\/security-frame-work\/","title":{"rendered":"Security Frame Work"},"content":{"rendered":"
\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t
\n\t\t
\n\t\t\t

Security Frame Work<\/span><\/h3>\n\n\t\t<\/div>\n\t<\/div>\n\n\t
\n\t\t
\n\t\t\t

1. User identification & Authentication<\/p>\n

1.1 Support unique user-ID assignment<\/p>\n

1.2 Prevent sharing of user-ID, e.g. prohibit multiple log-on from different locations<\/p>\n

1.3 Perform user-ID authentication before granting access to resources<\/p>\n

1.4 Perform user-ID authentication before re-enabling the expired session<\/p>\n

1.5 No display of sensitive information until user get authenticated<\/p>\n

1.6 Support a local user-ID management [add, modify, delete, access right granting]<\/p>\n

1.7 Automate log-off inactive user session (<=15 minute inactive session)<\/p>\n

1.8 Support single sign-on (e.g. ADFS)<\/p>\n

1.9 Support Secure LDAP or other equivalent method<\/p>\n

1.10 Support Two factors authentication for user log-on<\/p>\n

1.11 Support IAM product<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

2. Password Configuration<\/p>\n

2.1 Enforce alpha-numeric password with case sensitive<\/p>\n

2.2 Enforce special character on top of alpha-numeric password with case sensitive<\/p>\n

2.3 Render Application password unreadable on display, e.g. password masking<\/p>\n

2.4 Render Application, DB, OS password unreadable in any source-code, relevant files or database by using a strong hash. If hashing is not technically possible then encryption can be used with at least AES256 encryption at minimum.<\/p>\n

2.5 For Application that uses encryption method for password<\/p>\n

2.6 Enforce password minimum length to 8<\/p>\n

2.7 Enforce password history to 4<\/p>\n

2.8 Enforce password age to 30 days<\/p>\n

2.9 Lock User-ID after 6 failed password attempts<\/p>\n

2.10 Enforce password change for the first-time log-on (if password is set by admin)<\/p>\n

2.11 Prevent blank password<\/p>\n

2.12 Do not use any default password during development and implementation. The password must be changed to be complex enough to prevent a brute force attack.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

3. User Authorization<\/p>\n

3.1 Support role-base access (need-to-do basis)<\/p>\n

3.2 Restrict direct query to the database, e.g. restricting by using GUI menu restriction<\/p>\n

3.3 Provide the segregation of duties reviewing function.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

4. Audit trail requirement: The log must record the following items:<\/p>\n

Application security log must record the following items:<\/strong><\/p>\n

4.1 \" - Date and time of event<\/p>\n

\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0- Type of event<\/p>\n

\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0- Identity of user who caused the event \/ event source (IP Address, user ID)<\/p>\n

\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0- the outcome (success or fail)\"<\/p>\n

4.2 User management activities (add, delete, modify, authorization assignment)<\/p>\n

4.3 Password management activities ( add, delete, modify, reset)<\/p>\n

4.4 Log-on fail\/ Log-on success<\/p>\n

4.5 Log-off activity<\/p>\n

4.6 Attempt to perform privilege activity that is denied by application (failed activities)<\/p>\n

4.7 Changing of security log parameter (add, delete, modify, reset log)<\/p>\n

Centralized log management<\/strong><\/p>\n

4.8 Deliver security log to the Customer centralize log management for a proper retention and monitoring. For example deliver log through syslog protocol.<\/p>\n

4.9 Application path and files must be listed and submitted to IT security with indication of purpose and how critical it is.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

5. Information Transfer<\/p>\n

5.1 Enforce encryption for sensitive data in transit by applying AES256 or RSA2048 key encryption at minimum. Example of sensitive data are user\/password, customer information and credit card number.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

6. Time synchronization<\/p>\n

6.1 Support NTP time-synchronization with the authorized server [ or sync though OS system time]<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

7. Application Vulnerability protection<\/p>\n

7.1 Submit the report done by independent party showing clean result for penetration testing or secure source code review.<\/p>\n

7.2 SProvide white paper or written explanation showing all available security feature<\/p>\n

7.3 Provide white paper or written explanation to show how the solution correspond to the OWASP top 10<\/p>\n

7.4 Provide security vulnerability fixing without any additional cost as long as the maintenance agreement is valid.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

8. Data Masking<\/p>\n

8.1 If it's not for any business purpose, Bank account number must be masked during display. At minimum, it must prohibit showing the first 5 digits.<\/p>\n

8.2 If it's not for any business purpose, Customer citizen-ID must be masked during display. At minimum, it must prohibit showing the first 9 digits.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

9. Application supporting Financial information<\/p>\n

9.1 Virtual keypad is used in OTP insert transaction<\/p>\n

9.2 Support random virtual keypad<\/p>\n

9.3 2 factor is used when committing important functions, e.g. customer information change, password change, transaction commit.<\/p>\n

9.4 OTP life time is 5 minutes and must be specific to each transaction<\/p>\n

9.5 OTP must be hard to guess.<\/p>\n

9.6 Support out-of-band notification (Email and\/or SMS notification) for reporting committed transaction.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n

<\/span><\/span><\/span><\/span>\n<\/div>\n\t
\n\t\t
\n\t\t\t

10. Before Deployment [subject to be reviewed by IT security team]<\/p>\n

10.1 All internet-facing web application must be placed behind Web Application Firewall.<\/p>\n

10.2 Application deployment script and deployment task is handed to IT security before deployment<\/p>\n

10.3 Application user matrix and user management task will be prepared and handed to IT security before deployment.<\/p>\n

10.4 Application solution must be developed and implemented according to the design approval from the IT solution committee.<\/p>\n

10.5 Default password using by this solution must be changed<\/p>\n

10.6 Application must pass Security Acceptance Test (SAT). All identified gaps are to be closed before deployment. SAT is normally composed of secure source code review, application scanning & penetration testing, security requirement review [this sheet], review of regulator requirement (PCI-DSS, MAS, SO), infrastructure hardening and vulnerability assessment) - as considered by IT security<\/p>\n

10.7 Application log is sent to the centralized management log.<\/p>\n\n\t\t<\/div>\n\t<\/div>\n<\/div><\/div><\/div><\/div><\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Security Frame Work<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Security Frame Work<\/h3>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

1. User identification & Authentication<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

1.1 Support unique user-ID assignment<\/p>

1.2 Prevent sharing of user-ID, e.g. prohibit multiple log-on from different locations<\/p>

1.3 Perform user-ID authentication before granting access to resources<\/p>

1.4 Perform user-ID authentication before re-enabling the expired session<\/p>

1.5 No display of sensitive information until user get authenticated<\/p>

1.6 Support a local user-ID management [add, modify, delete, access right granting]<\/p>

1.7 Automate log-off inactive user session (<=15 minute inactive session)<\/p>

1.8 Support single sign-on (e.g. ADFS)<\/p>

1.9 Support Secure LDAP or other equivalent method<\/p>

1.10 Support Two factors authentication for user log-on<\/p>

1.11 Support IAM product<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

2. Password Configuration<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

2.1 Enforce alpha-numeric password with case sensitive<\/p>

2.2 Enforce special character on top of alpha-numeric password with case sensitive<\/p>

2.3 Render Application password unreadable on display, e.g. password masking<\/p>

2.4 Render Application, DB, OS password unreadable in any source-code, relevant files or database by using a strong hash. If hashing is not technically possible then encryption can be used with at least AES256 encryption at minimum.<\/p>

2.5 For Application that uses encryption method for password<\/p>

2.6 Enforce password minimum length to 8<\/p>

2.7 Enforce password history to 4<\/p>

2.8 Enforce password age to 30 days<\/p>

2.9 Lock User-ID after 6 failed password attempts<\/p>

2.10 Enforce password change for the first-time log-on (if password is set by admin)<\/p>

2.11 Prevent blank password<\/p>

2.12 Do not use any default password during development and implementation. The password must be changed to be complex enough to prevent a brute force attack.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

3. User Authorization<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

3.1 Support role-base access (need-to-do basis)<\/p>

3.2 Restrict direct query to the database, e.g. restricting by using GUI menu restriction<\/p>

3.3 Provide the segregation of duties reviewing function.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

4. Audit trail requirement: The log must record the following items:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Application security log must record the following items:<\/strong><\/p>

4.1 \u201d \u2013 Date and time of event<\/p>

\u2013 Type of event<\/p>

\u2013 Identity of user who caused the event \/ event source (IP Address, user ID)<\/p>

\u2013 the outcome (success or fail)\u201d<\/p>

4.2 User management activities (add, delete, modify, authorization assignment)<\/p>

4.3 Password management activities ( add, delete, modify, reset)<\/p>

4.4 Log-on fail\/ Log-on success<\/p>

4.5 Log-off activity<\/p>

4.6 Attempt to perform privilege activity that is denied by application (failed activities)<\/p>

4.7 Changing of security log parameter (add, delete, modify, reset log)<\/p>

Centralized log management<\/strong><\/p>

4.8 Deliver security log to the Customer centralize log management for a proper retention and monitoring. For example deliver log through syslog protocol.<\/p>

4.9 Application path and files must be listed and submitted to IT security with indication of purpose and how critical it is.<\/p><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

5. Information Transfer<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

5.1 Enforce encryption for sensitive data in transit by applying AES256 or RSA2048 key encryption at minimum. Example of sensitive data are user\/password, customer information and credit card number.<\/p><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

6. Time synchronization<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

6.1 Support NTP time-synchronization with the authorized server [ or sync though OS system time]<\/p><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

7. Application Vulnerability protection<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

7.1 Submit the report done by independent party showing clean result for penetration testing or secure source code review.<\/p>

7.2 SProvide white paper or written explanation showing all available security feature<\/p>

7.3 Provide white paper or written explanation to show how the solution correspond to the OWASP top 10<\/p>

7.4 Provide security vulnerability fixing without any additional cost as long as the maintenance agreement is valid.<\/p><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

8. Data Masking<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

8.1 If it\u2019s not for any business purpose, Bank account number must be masked during display. At minimum, it must prohibit showing the first 5 digits.<\/p>

8.2 If it\u2019s not for any business purpose, Customer citizen-ID must be masked during display. At minimum, it must prohibit showing the first 9 digits.<\/p><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

9. Application supporting Financial information<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

9.1 Virtual keypad is used in OTP insert transaction<\/p>

9.2 Support random virtual keypad<\/p>

9.3 2 factor is used when committing important functions, e.g. customer information change, password change, transaction commit.<\/p>

9.4 OTP life time is 5 minutes and must be specific to each transaction<\/p>

9.5 OTP must be hard to guess.<\/p>

9.6 Support out-of-band notification (Email and\/or SMS notification) for reporting committed transaction.<\/p><\/div><\/div><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

10. Before Deployment [subject to be reviewed by IT security team]<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

10.1 All internet-facing web application must be placed behind Web Application Firewall.<\/p>

10.2 Application deployment script and deployment task is handed to IT security before deployment<\/p>

10.3 Application user matrix and user management task will be prepared and handed to IT security before deployment.<\/p>

10.4 Application solution must be developed and implemented according to the design approval from the IT solution committee.<\/p>

10.5 Default password using by this solution must be changed<\/p>

10.6 Application must pass Security Acceptance Test (SAT). All identified gaps are to be closed before deployment. SAT is normally composed of secure source code review, application scanning & penetration testing, security requirement review [this sheet], review of regulator requirement (PCI-DSS, MAS, SO), infrastructure hardening and vulnerability assessment) \u2013 as considered by IT security<\/p>

10.7 Application log is sent to the centralized management log.<\/p><\/div><\/div><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<\/div>","protected":false},"excerpt":{"rendered":"

Security Frame Work Security Frame Work 1. User identification & Authentication 1.1 Support unique user-ID assignment 1.2 Prevent sharing of user-ID, e.g. prohibit multiple log-on from different locations 1.3 Perform user-ID authentication before granting access to resources 1.4 Perform user-ID authentication before re-enabling the expired session 1.5 No display of sensitive information until user get…<\/p>","protected":false},"author":2,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"elementor_header_footer","meta":{"footnotes":""},"class_list":["post-4274","page","type-page","status-publish","hentry"],"yoast_head":"\nSecurity Frame Work - Fusion Solution<\/title>\n<meta name=\"description\" content=\"Security Frame Work\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fusionsol.com\/en\/security-frame-work\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security Frame Work - Fusion Solution\" \/>\n<meta property=\"og:description\" content=\"Security Frame Work\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fusionsol.com\/en\/security-frame-work\/\" \/>\n<meta property=\"og:site_name\" content=\"Fusion Solution\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/fusion.solution\/\" \/>\n<meta property=\"article:modified_time\" content=\"2025-10-02T02:58:40+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/security-frame-work\\\/\",\"url\":\"https:\\\/\\\/www.fusionsol.com\\\/security-frame-work\\\/\",\"name\":\"Security Frame Work - Fusion Solution\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/#website\"},\"datePublished\":\"2017-12-19T03:09:53+00:00\",\"dateModified\":\"2025-10-02T02:58:40+00:00\",\"description\":\"Security Frame Work\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/security-frame-work\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fusionsol.com\\\/security-frame-work\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/security-frame-work\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fusionsol.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security Frame Work\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/#website\",\"url\":\"https:\\\/\\\/www.fusionsol.com\\\/\",\"name\":\"Fusion Solution\",\"description\":\"Business Innovation Provider\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fusionsol.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/#organization\",\"name\":\"Fusion Solution\",\"url\":\"https:\\\/\\\/www.fusionsol.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.fusionsol.com\\\/wp-content\\\/uploads\\\/sites\\\/2\\\/2020\\\/04\\\/FusionLogo.png\",\"contentUrl\":\"https:\\\/\\\/www.fusionsol.com\\\/wp-content\\\/uploads\\\/sites\\\/2\\\/2020\\\/04\\\/FusionLogo.png\",\"width\":249,\"height\":249,\"caption\":\"Fusion Solution\"},\"image\":{\"@id\":\"https:\\\/\\\/www.fusionsol.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/fusion.solution\\\/\",\"https:\\\/\\\/www.youtube.com\\\/channel\\\/UCYhatfvclBLCGPdNCyX7EZg\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Security Frame Work - Fusion Solution","description":"Security Frame Work","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fusionsol.com\/en\/security-frame-work\/","og_locale":"en_US","og_type":"article","og_title":"Security Frame Work - Fusion Solution","og_description":"Security Frame Work","og_url":"https:\/\/www.fusionsol.com\/en\/security-frame-work\/","og_site_name":"Fusion Solution","article_publisher":"https:\/\/www.facebook.com\/fusion.solution\/","article_modified_time":"2025-10-02T02:58:40+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.fusionsol.com\/security-frame-work\/","url":"https:\/\/www.fusionsol.com\/security-frame-work\/","name":"Security Frame Work - Fusion Solution","isPartOf":{"@id":"https:\/\/www.fusionsol.com\/#website"},"datePublished":"2017-12-19T03:09:53+00:00","dateModified":"2025-10-02T02:58:40+00:00","description":"Security Frame Work","breadcrumb":{"@id":"https:\/\/www.fusionsol.com\/security-frame-work\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fusionsol.com\/security-frame-work\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fusionsol.com\/security-frame-work\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fusionsol.com\/"},{"@type":"ListItem","position":2,"name":"Security Frame Work"}]},{"@type":"WebSite","@id":"https:\/\/www.fusionsol.com\/#website","url":"https:\/\/www.fusionsol.com\/","name":"Fusion Solution","description":"Business Innovation Provider","publisher":{"@id":"https:\/\/www.fusionsol.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fusionsol.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.fusionsol.com\/#organization","name":"Fusion Solution","url":"https:\/\/www.fusionsol.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fusionsol.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.fusionsol.com\/wp-content\/uploads\/sites\/2\/2020\/04\/FusionLogo.png","contentUrl":"https:\/\/www.fusionsol.com\/wp-content\/uploads\/sites\/2\/2020\/04\/FusionLogo.png","width":249,"height":249,"caption":"Fusion Solution"},"image":{"@id":"https:\/\/www.fusionsol.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/fusion.solution\/","https:\/\/www.youtube.com\/channel\/UCYhatfvclBLCGPdNCyX7EZg"]}]}},"_links":{"self":[{"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/pages\/4274","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/comments?post=4274"}],"version-history":[{"count":5,"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/pages\/4274\/revisions"}],"predecessor-version":[{"id":37352,"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/pages\/4274\/revisions\/37352"}],"wp:attachment":[{"href":"http:\/\/www.fusionsol.com\/en\/wp-json\/wp\/v2\/media?parent=4274"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}