Solved

Data replication for governance

Posted on 2012-12-21
4
296 Views
Last Modified: 2013-01-07
Just from a low tech management perspective, to get an idea for data governance more than anything, if say you have a payroll appliction storing sensitive data, can you give me some examples where the database's data could potentially be replicated in locations other than the main application database. I have some idea of replication whereby for high availability the data could be mirrored across several servers. I was just after a list of whereby data for an application may be cloned.

My concerns and the main driver for this question are that if data protection is an area of concern, and auditors just look at the main database for the application, if the data is also replciated in X, y, z location a vulnerability in x, y z location could expose the data to unauthorised access...

These are MS-SQL databases on VMware hosts, Windows 2008 guests...
0
Comment
Question by:pma111
  • 2
4 Comments
 
LVL 42

Expert Comment

by:EugeneZ
ID: 38712711
<can you give me some examples where the database's data could potentially be replicated in locations other than the main application database?>

please clarify your question
0
 
LVL 3

Author Comment

by:pma111
ID: 38712728
I was thinking along the lines of database backups, database mirroring etc.

I.e. a novice may think that an applications data is only in 1 database on one server in the network. But I suspect in high availability environments thats rarely the case. I was trying to get a quick overview of real life examples where data would be replicated in numerous locations therefore security controls need to consider each of these....
0
 
LVL 42

Accepted Solution

by:
EugeneZ earned 250 total points
ID: 38712778
less sensitive data replicated to different servers- less chance\risk to compromise this data...

for HADR-- you need to check with you firm regulations\business requirements\budget..

start with cluster server\ check mirroring and in any case have a  good
\fresh db backup..\have regular db maintenances\
--

but as an example: it is good to have some "test" server(s) with the same security as prod (for sensitive data) to test new application releases prior deployment in prod (MO\Qa servers\environments)..
and  due to avoid any headache-- scrub all sensitive data o test servers before letting testers\qa  to play with a new release
0
 
LVL 118

Assisted Solution

by:Andrew Hancock (VMware vExpert / EE MVE)
Andrew Hancock (VMware vExpert / EE MVE) earned 250 total points
ID: 38713005
DR Site, Off-Site Safe at Bank (Tape Archives), and The Cloud.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Ever wondered why sometimes your SQL Server is slow or unresponsive with connections spiking up but by the time you go in, all is well? The following article will show you how to install and configure a SQL job that will send you email alerts includ…
In this step by step tutorial with screenshots, we will show you HOW TO: Enable SSH Remote Access on a VMware vSphere Hypervisor 6.5 (ESXi 6.5). This is important if you need to enable SSH remote access for additional troubleshooting of the ESXi hos…
Via a live example, show how to extract insert data into a SQL Server database table using the Import/Export option and Bulk Insert.
This videos aims to give the viewer a basic demonstration of how a user can query current session information by using the SYS_CONTEXT function

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now