Skip site navigation (1) Skip section navigation (2)

Re: Logging access to data in database table

From: Bill Moran <wmoran(at)potentialtech(dot)com>
To: Misa Simic <misa(dot)simic(at)gmail(dot)com>
Cc: Ivan Radovanovic <radovanovic(at)gmail(dot)com>, pgsql-general(at)postgresql(dot)org
Subject: Re: Logging access to data in database table
Date: 2012-01-25 18:36:01
Message-ID: 20120125133601.309c5376.wmoran@potentialtech.com (view raw or flat)
Thread:
Lists: pgsql-general
In response to Misa Simic <misa(dot)simic(at)gmail(dot)com>:
> 
> But maybe it would be better to reorganise security on the way that users
> who do not need to have access to some data - simply do not have it
> (instead of to give them data and latter check log to confirm they have
> taken it...)

In many cases that's not enough.  For example with HIPAA in the US, a user
may be allowed to access data, but there still _has_ to be a log record
for each access.

-- 
Bill Moran
http://www.potentialtech.com
http://people.collaborativefusion.com/~wmoran/

In response to

Responses

pgsql-general by date

Next:From: Bill MoranDate: 2012-01-25 18:39:29
Subject: Re: Logging access to data in database table
Previous:From: Misa SimicDate: 2012-01-25 18:29:38
Subject: Re: Logging access to data in database table

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group