MySQL企业级审计提供了一种基于策略的审计解决方案,帮助组织实施更强大的安全控制并满足法规遵从性需求。随着敏感数据在线收集、存储和使用的增加,数据库审计已成为任何安全策略的重要组成部分。为满足合规性要求,组织必须能够生成审计跟踪,记录谁对哪些数据执行了什么操作。
本文转载自:http://www.mysql.com/products/enterprise/audit.html
MySQL Enterprise Audit
Only available in select Commercial Editions
MySQL Enterprise Audit provides an easy to use, policy-based auditing solution that helps organizations implement stronger security controls and satisfy regulatory compliance.
As more sensitive data is collected, stored and used online, database auditing becomes an essential component of any security strategy. To guard against the misuse of information, popular compliance regulations including HIPAA, Sarbanes-Oxley, and the PCI Data Security Standard require organizations to track access to information.
To meet these demands, organizations must be able to produce an audit trail of information to help track who does what to which piece of data. This includes login and logoff attempts, attempts to access a database or a table, changes to database schema and much more.
MySQL Enterprise Audit gives DBAs the tools they need to add auditing compliance to their new and existing applications by enabling them to:
- Dynamically enable/disable audit stream
- Implement policies that log all or selected login or query activities
- Automatically rotate audit log files based on size
- Integrate XML-based audit log stream with MySQL, Oracle and other third party solutions
MySQL Enterprise Audit enables organizations to add policy based auditing to their applications.
注:近期参加MySQL运维学习,老师推荐该文章作为学习和技术提高的扩展阅读,先记录到自己的博客中,随后慢慢消化、学习、提高。本文章与“字符集和权限安全”主题相关。
扫一扫
850
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
