Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

How can we secure our data from DBA?

I have very confidential data in my database. I am trying to secure my data from dba.

I am a member of development team. We develop our software and delpoy in a server which has its own dba. We have limited control over the server.

In this scenario how can i deny dba of the server to lookup my data and deny making changes to them.

Is it possible?

like image 999
KoolKabin Avatar asked Apr 20 '10 09:04

KoolKabin


People also ask

How can we protect data from database administrator?

Two-factor authentication (2FA) ensures that hackers can't access an admin account even if they get the password. Secondary authentication helps to identify users of shared accounts. Password management securely stores and distributes user credentials.

How DBA ensure safety and security in DBMS?

One of the primary tasks of a DBA is to keep databases secure. This can be accomplished, for example, by restricting access to certain users, controlling what each user can do and running anti-virus software. Another way to keep databases safe is to use encryption.


1 Answers

You can always encrypt all data that goes into the database.

However, a DBA will have full control on this data - he may not be able to decrypt it, but will be able to read it (in encrypted form), update it and even delete it. Nothing you can do about this.

You really need to rethink things - how can you work with a DBA you cannot trust? Most places will have service agreement that forbid DBAs from doing certain things. You need to rely on this kind of assurance if you don't think your DBAs are trustworthy.

like image 56
Oded Avatar answered Oct 09 '22 16:10

Oded