Security Mediator Benefits
Security Mediator Benefits
- Dedicated to security task (may be multi-level secure)
- Uses only its rules and relevant function, all directly, avoids interaction with DB views and procedures
- Maintained by responsible authority: the security officer
- Policy setting independent of database(s) and DBA(s)
- Logs just those transactions that penetrate the firewall, records attempted violations independent of DB logs*
- Systems behind firewall need not be multi-level secure
- Databases behind firewall need not be perfect
* also used for replication, recovery, warehousing
Gio Wiederhold TIHI Oct96 *