|
Authentication is one of the first things to consider in protecting data. No user should be allowed to access the data in any way unless they have been authorized access to the database. ... Allowing users unnecessary privileges is a risk to the data. ...
Data Control Language, a subtype of SQL, is used to administer privileges to users. The types of privileges that can be granted/revoked are as follows (Plew & Stephens 2002):
• Table - Select, insert, update, delete, all
• Database Object - (create) databases, tablespaces, tables, indexes, triggers, defaults, user-defined data types. ... Since DBMSs require some of the same roles, the privileges are pre-configured for common roles such as (Mullins, 2002):
• System Administrator – has the most privileges
• Database Administrator – assigns privileges on a particular database, able to access all data in the database, can drop or alter objects, cannot modify data
• Security Administrator – able to perform any activities related to security
• Operations Control – backup, recovery
It is important to remember to limit these types of users that have such widespread privileges.
Approximate Word count = 843
Approximate Pages = 3.4
(250 words per page double spaced)
|
|
