| From: | Bill Moran <wmoran(at)potentialtech(dot)com> |
|---|---|
| To: | Misa Simic <misa(dot)simic(at)gmail(dot)com> |
| Cc: | Ivan Radovanovic <radovanovic(at)gmail(dot)com>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Logging access to data in database table |
| Date: | 2012-01-25 18:39:29 |
| Message-ID: | 20120125133929.be6ae7a3.wmoran@potentialtech.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
In response to Misa Simic <misa(dot)simic(at)gmail(dot)com>:
>
> But maybe it would be better to reorganise security on the way that users
> who do not need to have access to some data - simply do not have it
> (instead of to give them data and latter check log to confirm they have
> taken it...)
In many cases that's not enough. For example with HIPAA in the US, a user
may be allowed to access data, but there still _has_ to be a log record
for each access.
--
Bill Moran
http://www.potentialtech.com
http://people.collaborativefusion.com/~wmoran/
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Misa Simic | 2012-01-25 19:02:37 | Re: Logging access to data in database table |
| Previous Message | Bill Moran | 2012-01-25 18:36:01 | Re: Logging access to data in database table |