Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Database access control: Application or Database level control?

Tags:

sql-server

permissions

ms-access

I have been developing an application in Access 2003 that uses SQL Server as the back end data store. Access is used only as a GUI and does not store any data. All the code in the application is written in VBA using ADO for data access.

In recent meetings the DBA that works in my organization has become increasingly concerned over the fact that the application logic controls what data is available for viewing and for update. The way I have been developing the application up until this point is to use a single database login for all access to the database. This database login is the only user allowed access to the database and all other databases users (other than DBA types) are restricted.

The DBA for this project is insisting that each user of the application have their account mapped to only those objects in the database to which they should have access. I can certainly see his concern and that is why I was hoping to ask two questions ...

  1. Is having a single application level login to the database a bad practice? I had planned to implement a role based security model where the "access" users were given was dependent upon their application role. However, the application logic determined whether certain queries/updates were allowed to proceed.

  2. Does anyone know of some resources (articles/books) that go over how to design an application where database access is controlled from within SQL Server and not through the application?

like image 266
webworm Avatar asked Jul 13 '10 16:07

webworm

People also ask

What are the 3 types of access control?

Three main types of access control systems are: Discretionary Access Control (DAC), Role Based Access Control (RBAC), and Mandatory Access Control (MAC).

What is database access controls?

Database access control, or DB access control, is a method of allowing access to a company's sensitive information only to user groups who are allowed to access such data and restricting access to unauthorized persons to prevent data breaches in database systems.

What are the two types of access control?

There are two types of access control: physical and logical. Physical access control limits access to campuses, buildings, rooms and physical IT assets. Logical access control limits connections to computer networks, system files and data.

2 Answers

  1. It is bad practice but as you have seen - that is how most applications "evolve" starting out as wide open to a few users and getting tightened down as more people (IT/DBAs) get involved.

  2. Your DBA should be able to help out - almost all general SQL Server books have a chapter or two on users and roles and security. They will also be able to explain the nuances of the different security options and what works best in your environment.

Alot of the setup will depend on the environment and the application. For example - if all your users are on Windows (based) connections you will want to use Windows Authentication instead of SQL Authentication. If you have many various roles you will want to use SQL Server Roles. You may want to incorporate AD groups as well as roles (or instead of). Your DBA can help you make those decisions, or even make them for you, as you explain more about your application to them.

The people on SO can certainly provide our opinions as well if you post more information about the environment and application and usage.

like image 155
ktharsis Avatar answered Oct 15 '22 15:10

ktharsis

In my opinion

  1. Yes it is bad practice, as a user could use the credentials to access the database in another way, circumventing your applications access control and perform actions that they shouldn't be able to. If you are on a windows domain you can create a group in AD for each of the roles and assign users to the group, then apply permissions based on that group so you don't have to add new users to SQL.

If you go down the active directory route you can use an LDAP query to see what groups the user belongs to, and you can decide whether they should have access.

It'll be interesting to read the other responses on this.

like image 23
Chris Diver Avatar answered Oct 15 '22 14:10

Chris Diver
Sign in to Comment

Related questions

How to avoid connections against empty/null database by Entity Framework
NOT NULL clause in a SQL SERVER check constraint
Is it possible to use Entity Framework and a Database project together?
SSIS: Variable from SQL to Data Flow Task
Filter the records by a certain value in kafka connect
SSIS Package Full Table Load Slow
Day light savings time is resulting in incorrect dates in database
Connect to MS SQL Server from PHP on Linux? [closed]
SQL Delete Where Not In
Define Generic Data Model for Custom Product Types
Change column type from ntext to varbinary(max)
Pre-Deployment in Database project
SQL: "Write Protect" row of data possible?
Stored Proc and SqlCommand Timeout
View all ntext column text in SQL Server Management Studio for SQL CE database
What is the most cost-effective way to break up a centralised database?
Count number of 'overlapping' rows in SQL Server
What is the difference between an table index and a view index?
How to do a batch update?
ADO/SQL Server: What is the error code for "timeout expired"?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!