Question
How can views be used as part of data security? What are the limitations of views for data security?
Answer
The view is a division of the database used to produce a dynamic table by querying one or more base tables simultaneously of the user's request in the database. Using views, the user can view only the current data that has been requested for access. The user cannot view the data, which is considered private or confidential. This effectively prevents the data from unauthorized access. The user can access the data, whichever is required, but the user cannot get access to view the base table. The view is restricted for the particular user.
Limitations of views:
- In an organization, views are used as a part of the data security approach, but it is not effective enough to control unauthorized access to the table.
- The personnel in an organization can have different authorization levels; personnel can view and update the database using their authorization. Other personnel can view the database because of their restrictions in accessing the database.
- Personnel with higher authority levels can gain knowledge of the database and access the database without knowing the person in charge. So, some limitations have to be tackled.
- Views cannot protect the whole database independently; an organization should include some additional security measures to protect the database.
إرسال تعليق