Protecting your database from unauthorized access and other threats starts with establishing basic computer securitymeasures in your workplace. The principle steps toward achieving this objective are:
- Set up a firewall. A firewall helps block intruders on the Internet from gaining access to your computers and business data. A hardware firewall is best because it provides protection for all the computers on your network. RuffaloCODY Customer Support will work with you to configure the appropriate firewall for remote access and administration of your server.
- Install anti-virus software on all servers. Look for a program that not only detects and disables viruses, but can also be regularly updated to screen for new viruses.
- Use strong passwords. Passwords should be required to log on to any computer and server in your workplace. Strong passwords have a mix of uppercase and lowercase letters, numbers and symbols. Make sure users are required to change their passwords regularly.
- Back up files. Disasters happen, and if you haven’t saved your important files and information on a separate storage system, all your critical business application data could be lost.
- Handle information appropriately. If back up media contains sensitive, proprietary or protected information, then it should be stored in an offsite facility with restricted and monitored access.
- Update your Operating System software. Operating System software updates and patches typically include the latest security features.
Regulate Access to Information
Not everyone should have access to everything in your workplace. With modern server operating systems, you can permit and restrict employee access to documents, spreadsheets or other business files. You can also designate whether a user is permitted to just read a file or can also change it. Here are tips for regulating access:
- Configure your system so that network traffic is limited to only those specific servers, workstations and ports that are necessary to conduct business.
- Create groups of users and assign permissions and privileges to these groups rather than individual users. This saves you time in administering access rights.
- Create user groups based on roles, such as sales representatives. Then, assign a set of permissions that are relevant to performing the tasks defined for that role.
- Set access rights for each role to the minimum levels required for users to do their jobs.
- Restrict and monitor access to workstations with CAMPUSCALL or similar calling software (these machines have access to databases).
Pay Attention to the Database
Recognizing the sensitivity and high value of data, remember to pay special attention to database security. Here are several recommended actions to improve database security:
- Install the most recent database service packs. Oracle conducts an analysis of each security vulnerability addressed by a Critical Patch Update (CPU) or a Security Alert. The results of the security analysis are reflected in the severity of the CPU or Security Alert and the associated documentation describing, for example, the type of vulnerability, the conditions required to exploit it and the result of a successful exploit.
- Isolate your server and back it up regularly. Physical and logical isolation make up the foundation of database server security. Machines hosting a database should be in a physically protected location. Backup all data regularly and store copies in a secure off-site location.
- Do Not Store Payment Card Information in a database created and maintained only through the CAMPUSCALLĀ® software.
- Follow All Recommended Oracle Database Security Procedures for Oracle database servers.
- Follow Current Payment Card Industry Data Security Standards if any payment card information is processed, stored or transmitted.
Please contact Mike Rippel at 800.756.7483 with any questions or requests for assistance that you may have.
