I have very confidential data in my database. I am trying to secure my data from dba.
I am a member of development team. We develop our software and delpoy in a server which has its own dba. We have limited control over the server.
In this scenario how can i deny dba of the server to lookup my data and deny making changes to them.
Is it possible?
Two-factor authentication (2FA) ensures that hackers can't access an admin account even if they get the password. Secondary authentication helps to identify users of shared accounts. Password management securely stores and distributes user credentials.
One of the primary tasks of a DBA is to keep databases secure. This can be accomplished, for example, by restricting access to certain users, controlling what each user can do and running anti-virus software. Another way to keep databases safe is to use encryption.
You can always encrypt all data that goes into the database.
However, a DBA will have full control on this data - he may not be able to decrypt it, but will be able to read it (in encrypted form), update it and even delete it. Nothing you can do about this.
You really need to rethink things - how can you work with a DBA you cannot trust? Most places will have service agreement that forbid DBAs from doing certain things. You need to rely on this kind of assurance if you don't think your DBAs are trustworthy.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With