Restricting Access To Databases - Restricting Access

Restricting Access

Steps to restrict database access within an organization:

  1. Implement Separation of duties (SOD) a preventive control.
  2. Establish test and production environments which is preventive control.
  3. Restrict user account and Database administrator access which is a preventive control.
  4. Turn on audit trails, monitoring software, or exception reports which are detective controls.

Elements to restrict include:

  1. Data access (Successful/Failed Selects)
  2. Data Changes (Insert, Update, Delete)
  3. System Access (Successful/Failed Logins; User/Role/Permissions/Password changes)
  4. Privileged User Activity (All)
  5. Schema Changes (Create/Drop/Alter Tables, Columns, Fields)

Read more about this topic:  Restricting Access To Databases

Famous quotes containing the words restricting and/or access:

    We enunciate a grand principle, then we are timid and begin restricting its application. We are a nation of infidels to principle.
    Mary F. Eastman, U.S. suffragist. As quoted in History of Woman Suffrage, vol. 4, ch. 7, by Susan B. Anthony and Ida Husted Harper (1902)

    The nature of women’s oppression is unique: women are oppressed as women, regardless of class or race; some women have access to significant wealth, but that wealth does not signify power; women are to be found everywhere, but own or control no appreciable territory; women live with those who oppress them, sleep with them, have their children—we are tangled, hopelessly it seems, in the gut of the machinery and way of life which is ruinous to us.
    Andrea Dworkin (b. 1946)