Prof. David Belva
The main office of the company will take responsibility for the implementation of security and it is responsible for ensuring that the staff implement such security features. Individual site managers will be responsible for enforcing security for the subordinates. The offices, server rooms and the phone rooms should be given priority during the security design, there should be paper clearance and only few people allowed to the sensitive areas of the company (Kobus, 2009, p. 6). Another item to be included in the security list is workplace protection. The confidential data involving the team and the company such as sales data should remain as confidential as possible. All unused ports and should be disconnected from the server to ensure there is no unauthorized access from intruders.
The network equipment such as server, routers should be placed in secure areas. Apart from the digital security, there should be barriers to entries such as several combination of locked doors. Each door should have different person opening and only fully authorized individuals should access the devices. Physical security such as laptops and equipment should be accessed via fingerprints, username. VPN software should also be included to ensure secure connections in the internet. Unique and complex user passwords should be placed at strategic locations. Various website users can be allowed a particular pattern of password while the administrator password should be well defined. The company passwords should have minimum of two numbers, two lower case letters and an inclusion of special characters.
Database servers should have as pitiful openness and detectable quality to the Internet as could sensibly be normal. Right when, for example, an Internet-open web server is used as a front end for a database application, the database should not be on the Web server have itself. Similarly, the database host or framework firewall should deny regardless of movement from specific, static IP addresses and ports of usage and interface servers
Access Control
Consider using automated gadgets, store up advantages and methodologies should be used to maintain judgment abilities security prudent steps, for instance, impeding invalid customer session get to and renaming worked in manager accounts (Kodeswaran & Viegas, 2010).
Avoid hard coding passwords into affiliation strings in database applications
Consider removing the area administrative social events from the database parts and supplanting it with a custom adjacent get-together with simply real database officials. This may not shield adjacent administrators from surrendering themselves any get to they wish, however in any occasion these exercises would be auditable
Encryption
Database archives with bound information set away on PDAs (e.g. convenient PCs, go down tapes) or at danger workstations (e.g. out in the open regions) must be secured through encryption and strong passwords - or proportionate approval. Secure capabilities (and similarly exceedingly fragile restricted information) through encryption. Consider using SSL validations. When transmitting data or emulating databases over an un-place stock in framework, scramble data (e.g. SSL, demonstrate point VPN tunnels).
Reference
Chen, D. Kifer, K. LeFevre, and A. Machanavajjhala (2010). Privacy-preserving data publishing. Foundations and Trends in Databases, 2(1-2).
I. Dinur and K. Nissim (2016). Revealing information while preserving privacy. In PODS, 2003.
G. Kabra, R. Ramamurthy, and S. Sudarshan (2016). Redundancy and information leakage in fine-grained access control. In SIGMOD.
P. B. Kodeswaran and E. Viegas (2010). Applying differential privacy to search queries in a policy based interactive framework. In CIKM-PAVLAD,