Restricting Access
Steps to restrict database access within an organization:
- Implement Separation of duties (SOD) a preventive control.
- Establish test and production environments which is preventive control.
- Restrict user account and Database administrator access which is a preventive control.
- Turn on audit trails, monitoring software, or exception reports which are detective controls.
Elements to restrict include:
- Data access (Successful/Failed Selects)
- Data Changes (Insert, Update, Delete)
- System Access (Successful/Failed Logins; User/Role/Permissions/Password changes)
- Privileged User Activity (All)
- Schema Changes (Create/Drop/Alter Tables, Columns, Fields)
Read more about this topic: Restricting Access To Databases
Famous quotes containing the words restricting and/or access:
“We enunciate a grand principle, then we are timid and begin restricting its application. We are a nation of infidels to principle.”
—Mary F. Eastman, U.S. suffragist. As quoted in History of Woman Suffrage, vol. 4, ch. 7, by Susan B. Anthony and Ida Husted Harper (1902)
“Knowledge in the form of an informational commodity indispensable to productive power is already, and will continue to be, a major—perhaps the major—stake in the worldwide competition for power. It is conceivable that the nation-states will one day fight for control of information, just as they battled in the past for control over territory, and afterwards for control over access to and exploitation of raw materials and cheap labor.”
—Jean François Lyotard (b. 1924)