Analysts Forrester Research has predicted that suppliers
will begin offering innovative data privacy products within the
next 12 to 24 months to control the activity of database
administrators and will assign restrictive roles.
Forrester Research noted that traditionally database
administrators (DBAs) have always had full access to all of the
data in a database, even data classified as private or
sensitive.
But with today’s corporate focus on tighter IT security,
Forrester said there was a need to control the access of the DBA to
private data, such as financial, health-related, or credit card
data.
It predicted that within the following 12 to 24 months, database
management system (DBMS) and third-party suppliers will roll out
products focused on multiprivileged DBA roles, granular DBA
auditing, and related security tools that would limit DBA
access.
In the meantime Forrester Research advised users dealing with
databases that hold private data to limit the number of DBAs
managing such environments, enable full auditing of DBA activity,
and use a less-privileged DBA role.
Looking ahead, Forrester Research expects that the data security
officer role will evolve into one that is responsible for
overseeing the security of the database, with DBAs having no access
to private data.