See the latest DB2 Magazine edition for an excellent article by Roger Sanders:
Could Label-Based Access Control be the Magic Bullet that Tames the Privacy Beast?
After reading the Distributed DBA column on database cloning for Linux, Unix, and Windows in DB2 Magazine, a reader who works in the heavily regulated banking industry cried out for help. How, he wondered, could he keep sensitive information away from developers' eyes without having to obfuscate multiple tables? "I think I'm searching for a magic bullet that doesn't exist." But does it exist? Columnist Roger Sanders thinks DB2 9 might offer a solution in the form of label-based access control. Find the answer, and lots of other useful information, in the DB2 Magazine Email Newsletter Volume 8, Issue 4.
Also on LBAC, see Rebecca Bond and her team's book Understanding DB2 9 Security
and
Web Chat: DB2 9: Securing your data with Label-Based Access Control
Replay of this Chat held on October 12, 2006 is now available.
Securing information assets and restricting data access to only those with the need to know is becoming a significant challenge for many organizations, especially in highly classified environments such as government agencies, armed forces, healthcare institutions, etc. Label-Based Access Control (LBAC) is a new security capability in DB2 9 that allows you to control access to your data at a very granular level. With LBAC you can limit data access at the row and/or column level based on security labels. Unlike traditional implementations of mandatory access control (e.g., Multilevel Security), the DB2 LBAC capability allows you to tailor the security label definition to best suit your application specific needs. DB2 LBAC integrates well with other DB2 capabilities (like data partitioning) and can be combined with such capabilities to offer an even stronger security.
Join Sal Vella, VP of DB2 Development, and Walid Rjaibi, Senior DB2 Software Engineer - Security and Privacy, for a deep dive into the LBAC capability in DB2 9 on Linux, UNIX, and Windows.
and
Article:DB2 Label-Based Access Control, a practical guide, Part 1: Understand the basics of LBAC in DB2 by Carmen Wong and Stan Musker.
Susan
