 | Level: Intermediate Carmen K. Wong (ckmwong@ca.ibm.com), Software Developer, IBM
Stan Musker (smusker@ca.ibm.com), DB2 Information Developer, IBM
Manjula Panthagani (manjulap@us.ibm.com), Advanced Support Engineer, IBM
Joseph W. Baric, Jr. (jbaric@us.ibm.com), Advanced Support Engineer, IBM
30 Aug 2007
Apply Label-Based Access Control (LBAC) to protect your data from illegal access, yet
have the flexibility to allow users to restrictively access data. Create these and other LBAC solutions in this step-by-step guide based on use-case scenarios.
Objectives - Use security labels to control access to data at
the row level, column level, and at a combination of both row and column levels.
- determine which security label component is most
appropriate when creating those security labels.
- Use a security policy to associate your security label components with your
security labels.
Prerequisites
This tutorial is written for IDS database developers and IDS database administrators.
You should understand the basic concepts of LBAC.
System requirements
IDS 11 for Linux®, UNIX®, and Windows®.
Duration
Formats html, pdf
Series overview
This series consists of two tutorials: the first part covers the basic row protection
and column protection; the second part contains more complex scenarios and introduces the use of exemptions.
This series is based on the tutorials originally published about using LBAC with
DB2 entitled "DB2
Label-Based Access Control, a practical guide" by Carmen Wong and Stan Musker. This
series is adapted for Informix Dynamic Server by Manjula Pathangani and Joseph Baric.
Tutorial overview
This tutorial provides a guide to using IDS' Label-Based Access Control
security feature. LBAC controls access to table objects by attaching security labels
to them. Users attempting to access an object must have its security label granted
to them. When there's a match, access is permitted; without a match, access is
denied.
| | | |
