Using a dictionary to help establish security

A dictionary, such as the IBM® DB/DC Data Dictionary, monitors relationships among entities in your computing environment (such as, which programs use which data elements), making it an ideal tool to administer security.

You can use the dictionary to define your authorization matrixes. Through the extensibility feature, you can define terminals, programs, users, data, and their relationships to each other. In this way, you can produce reports that show: dangerous trends, who uses what from which terminal, and which user gets what data. For each user, the dictionary could be used to list the following information:

• Programs that can be used
• Types of transactions that can be entered
• Data sets that can be read
• Data sets that can be modified
• Categories of data within a data set that can be read
• Categories of data that can be modified