ExampleBANK implements a security strategy where data access to DB2® databases is made available according to certain security policies.
Security challenge | Row and column access control feature which addresses the security challenge |
---|---|
Limiting row access to only authorized users. Tellers are only permitted to view client data that belong to their own branch, not all clients of ExampleBANK in the company-wide system. | Row permissions can be implemented to control which user can view any particular row. |
The account number is accessible by customer service representatives only when they are using the account update application. This application is identified through stored procedure ACCOUNTS.ACCTUPDATE. | Column masks can be used to filter or hide sensitive data from customer service representatives if they query the data outside of the ACCOUNTS.ACCTUPDATE application. |