How can you monitor the server and database for unauthorized access?

M

Mikhail Dudek2018-04-17 19:54:40

Monitoring

Mikhail Dudek, 2018-04-17 19:54:40

In Europe, the GDPR (General Data Protection Regulation) is coming. One of the points requires monitoring whether personal data has been stolen and if suddenly it was, then warn all users. How to monitor it?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

S

Sergey, 2018-04-18
@feanor7

There are third-party software solutions, for the Russian Federation there are competitors in the euro zone. In the Russian Federation there were Shield-RZD, Dallas Lock. These products are certified by the FSTEC as protection against unauthorized access, including. Some will not allow you to connect an unauthorized USB flash drive to the system. It was like the ability to track actions.

O

other_letter, 2018-04-18
@other_letter

From the situation.
What do you really need?
Monitor? Then there are countless ways to write six logs and/or create event alerts.
Meet requirements? Well, then scroll through the best practices.
Get a license/certificate? Then read the requirements.
Just ask yourself the same question "why". As an option "to what"

A

Alistair O, 2018-05-07
@box4

here it is necessary to approach it comprehensively, I start from account management, then audit tables,
take iso27001 and 27002, go through it.
01 is what it should be 02 is how to implement it.