Re: Logging access to data in database table

From: Bill Moran <wmoran(at)potentialtech(dot)com>
To: Misa Simic <misa(dot)simic(at)gmail(dot)com>
Cc: Ivan Radovanovic <radovanovic(at)gmail(dot)com>, pgsql-general(at)postgresql(dot)org
Subject: Re: Logging access to data in database table
Date: 2012-01-25 18:36:01
Message-ID: 20120125133601.309c5376.wmoran@potentialtech.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

In response to Misa Simic <misa(dot)simic(at)gmail(dot)com>:
>
> But maybe it would be better to reorganise security on the way that users
> who do not need to have access to some data - simply do not have it
> (instead of to give them data and latter check log to confirm they have
> taken it...)

In many cases that's not enough. For example with HIPAA in the US, a user
may be allowed to access data, but there still _has_ to be a log record
for each access.

--
Bill Moran
http://www.potentialtech.com
http://people.collaborativefusion.com/~wmoran/

In response to

Responses

Browse pgsql-general by date

  From Date Subject
Next Message Bill Moran 2012-01-25 18:39:29 Re: Logging access to data in database table
Previous Message Misa Simic 2012-01-25 18:29:38 Re: Logging access to data in database table