 | Level: Introductory Carmen K. Wong (ckmwong@ca.ibm.com), Software Developer, IBM
Stan Musker (smusker@ca.ibm.com), DB2 Information Developer, IBM
11 May 2006 LBAC is a security feature introduced in the DB2® Viper release. With LBAC, administrators can control read and write access of user to a table column and row level. This tutorial includes use-case scenarios that demostrate how users can apply LBAC to protect their data from illegal access, and yet has the flexibility of allowing user to access data restrictively. The tutorial provides a step-by-step guide to create LBAC solutions based on use-case scenarios.
Prerequisites
This tutorial is written for DB2 database developers and DB2 database administrators.
You should have some basic concepts of LBAC from taking Part 1 of this tutorial series. In order to complete Part 2 of this tutorial series, you must first complete Part 1.
System requirements
You must have DB2 Viper for Linux®, UNIX®, and Windows® installed. Download the test drive version of
DB2 Viper.
Formats html, pdf
Introducation
The tutorial is divided into two parts. Part 1 covers the basic setup to apply
row protection and column protection to tables. Part 2 contains more complex scenarios that involve
both row and column level protections, and introduces the use of exemptions. This tutorial, Part 2, provides a guide to using DB2's Label-Based Access Control (LBAC)
security feature. LBAC controls access to table objects by attaching security labels
to them. Users attempting to access an object must have its security label granted
to them. When there's a match, access is permitted; without a match, access is
denied.
| | | |
