Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security / Advisories

Advisories

Does Authentication Really Stand for Security?

Some things you can never be too sure about

By Alexandru Dumitru, Security News Editor

21st of August 2007, 14:57 GMT

Adjust text size:



Enlarge picture
I've just read something very interesting on SecurityPark, a piece of news that contained a lot of statements coming from Steve Hurn, CEO of Secerno. After reading what Hurn had to say I have to agree that authentication isn't the same thing with being
secure.

One of the most concerning things in his statements was the fact that even if validation measures are taken to the extreme and are really tough to beat, a company can never have too much control on what an employee does with their database for example. Companies should deploy special softwares to allow them to know what the person that is accessing the database is doing with it. Steve Hurn also said that a program should be designed in order to protect the database from all possible malicious intents.

Another important fact was highlighted: some companies' software is not "strong" enough to be impenetrable by hackers and they can easily access their main database after hacking an account and logging in with it. This matter is taken more seriously, Hurn stated, especially since some high-profile companies have had problems with cyber-security breaches. For example, Oracle is going to buy Bharosa, in order to build up security.

There are many companies that tackle computer related theft and fraud in our days, but for database security problems to be completely solved within firms, special software deployment is not enough. This matter needs to be taken down to the employees, as I've read on the same site. People need to be persuaded that they should only use the data that is required in the process they were working on, and not to touch other elements of the database. I don't know what rate of success this will have, but linked together with great authentication technology and certain programs that can monitor and "understand" employees' actions is going to make things better for database security.

TAGS:

 authentication | technology | security | database


Rating:
Fair (2.3/5) 6 vote(s) so far    

Read by 420 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Oracle Buys InnoDB

Oracle Builds Free Database for Students and Rookies

Prevent Network Intruders with AIDE

Data Security: VMware for The Win!

Create MySQL database backup

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive