The Problem Of Database Security

This may be because of legal requirements e.g. health and safety information where ensuring the Information of service users are kept protected; or in a hospital where Doctors need to talk about a patient who requires a certain treatment or diagnosis.

When there maybe a conflict or dilemma in relation to sharing information and maintaining confidentiality.

given extra safeguards for sensitive information – e.g. ethnicity, political views, religion, health or criminal records

Due in Week Seven: Outline the Access Control Policy. Describe how access control methodologies work to secure information systems

I am pretty sure as a human being trying to live a successful, and a life worth living everyone wants their information to be protected as much as possible. Things such as credit card information, birth records, bank information, basically anything that has to do with money or someone’s private life

Consequently employees had to deal with high risk of failure against the complex functions and user related errors ;

Security flaws or vulnerabilities have increased and spread rapidly over the past several years. More and more vulnerabilities are being discovered by security experts worldwide. Some of these flaws have proved to be extremely dangerous and lethal as they have caused unmeasurable damages to industries and organizations as well as individual users. Security vulnerability can be identified as a fault or weakness in a product or system that allows an attacker to exploit and manipulate that particular vulnerability and compromise the confidentiality, integrity and availability of that product or system (Definition of a Security Vulnerability ).

Information count private if associated with an individual. Some types of private information, such as education, employment, person’s health information, may be protected by privacy laws. Unauthorized disclosure of private information can make

You may choose to restrict the collection or use of your personal information in the following ways:

Sub-Claim: Privacy problems arise through activities of people, businesses, and the government, and the way to address theses problems is to regulate these activities. One of the activities that can result in privacy problems is the collection of information.

The principles that allow covered entities such as government agencies to release protected health information only with the patient’s consent is that PHI will be released in compliance with the regulations governing reporting requirements. There are times where the government can release protected health information, the HIPAA Privacy Rule provides that protected

Limiting Use, Disclosure and Retention: Personal information can be collected or disclosed for the purpose, it was taken. For other purposes, consent is required. Personal information should be kept as long as necessary.

ii) Accessing information held - Organisations are obligated to allow people access to the personal data held about them. This is to allow them to:

Human error: Errors caused by people who get into contact with the web application or data servers either as operators or users include; accidental deletion of data, destruction of software programs, configuration or hardware error. Vulnerabilities left by the software developers in software, is another major error. This can include authentication which can be bypassed, failure to validate input and output data, incorrect implementation of encryption, escalation of privileges, and failure to handle errors correctly can be used to attack web application leading to exposure of sensitive data such as customer’s financial data. This can be used to cause fraud to the customer’s bank or credit card.

With advances in technology constantly happening, it can be hard to keep up with all of the latest trends. If organizations cannot keep up with the latest trends, it can lead to flaws in their security. Any flaws in security can have a detrimental effect on an organization’s database. Almost every organization has some sort of database, whether it is for maintaining customers, inventory, or vital information.