April 7, 2008 at 6:11 pm
Comments posted to this topic are about the item Securing Data
April 8, 2008 at 4:17 am
Thanks, Steve, for bringing up the subject of data security. This is one of my favorite subjects and also one that I blog about fairly regularly (http://www.johnmagnabosco.com).
Yes, there are those evil hackers who spend tremendous amount of resources to compromise the integrity and availability of our data; but when there is a data security breach story in the news it is more often someone who had authorized access to the data and it is the confidentiality of the data that had been compromised.
Storing sensitive data in a database requires special consideration. Awareness for both developers and management is important; much like the subject of SQL Injection, there are many who are uncertain to what data is considered sensitive. (ie: Birthday is sensitive information -- how many of you have a place on your intranet listing your co-worker's birthdays?)
April 8, 2008 at 9:37 am
Adding a new application should not be adding just another point of vulnerability. Thank you for the words and reminder about not leaving the keys in the car with the engine running.
Not all gray hairs are Dinosaurs!
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply