The present business industry is all the more worried about database hacking than ever before. The main question that comes in mind of most people is whether or not to give their employees the role of protecting sensitive corporate data. Most industry analysts would simply reply in the negative and for a good reason. Recent studies have indicated that 80 % of the security breach of data mainly involves employees, insiders or those having internal access to the organization, which puts the information at risk. The main challenge that most companies face today is to maintain a proper balance between protecting sensitive information as much as possible and providing appropriate access to their workers, in addition to prevention of hacking. This is mainly because internet and e-mail have made the distribution and sharing of information relatively easier than ever.

Conventionally, database administrators are mainly assigned the role of proper administration of data to handle such situations or are granted multiple system prerogatives. In addition, the DBA also gets to enjoy unbridled access to the company system, in order to manage the IT infrastructure of the company 24 x 7 and also, to react to emergency situations. Even as firms continue to streamline operations and consolidate databases for maximizing both protection and efficiency of data from external threats such as hacking, the role-based and user-based security model does not comply with the “need-to-know” protection best-practices. In addition, this security model does not even meet the PIPEDA or SOX regulatory requirements for adequate data privacy protection.

Multi-factored Model For Preventing Hacking:

A multi-factored approach is mostly built on the principle of defense-in-depth which mostly inaugurates the multiple mechanisms for augmenting the role security model and the traditional user. This would mean the setting up of restrictions, controls and boundaries such that, those employees having database access privileges cannot freely alter, use or export important sensitive information. Most of these mechanisms are grouped into rules, realms, policies and roles. Most realms are established for encapsulating a set of database objects or an existing application within a protection zone. The one advantage of the consolidated database is the increased economies of scale and the elimination of information silos. However, at the same time, the information comprised in a single database mainly requires different protection levels from hacking. The other mechanism comprises of rules. Based upon the needs and requirements, the rules are further restricted. These are mainly accomplished with the help of domain specific decision factors or the environmental factors such as the authentication models, the time-of-day and the IP address.

Policies of System for Prevention of Hacking:

The type of content contained within the structure is defined by the schema of a database. With the advent of new technologies, even the security administrators can set restrictions for preventing hacking of any sorts. With the separation of the data management and the schema within the database system, the system policy further backs the segregation of duties principle. This helps the database administrators to perform their duties while entrusting the security administrator to protect the infrastructure of the database and thereby prevent hacking.