Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Is there any security in a domino environment?

Status
Not open for further replies.
Guest_imported

Guest_imported

New member
Jan 1, 1970
0
I had a company create a propriatary software program for my company. I have over $100,000 worth of names with personal finacial information stored in the database. Our employees have access to all the data so when a client calls the info can be easily accessed. Here's my problem, any of the employees can make a copy of all the records zip them and save them to a disk or email them to my competiton. Is there any way to protect my data?s
mark rueed . com
 
Sort by date Sort by votes
Is there ACL on your database ?
I think u would be able to control the acces with it ....Another method is to encrrypt the database but be careful with it cause once encrypted it can only be accesed by people having the appropropriate rights in the ACL

 
Upvote 0 Downvote
You can restrict access in the ACL to specific individuals in your organisation and prevent anonymous access.

You can use consistent acl property to enforce this when a local replica or copy is made.

You can use reader fields to hide documents from (and prevent replication with) all but specified users, groups and/or roles.

You can use design access lists to restrict design elements and documents viewed with them or created from them.

You can encrypt the database on the server to prevent a file system copy from being readable.

You can encrypt documents to prevent reading by all but those who have the encryption key.

You can program the database to fail dramatically or to sneakily send notification when opened on local or on an unknown server.

You can write code to audit who reads what documents and when.

You can disable replication in the replication settings.

THE BOTTOM LINE:
You can't stop them reading the information and either
a) forwarding by an email they typed,
b) telephoning someone and telling them what they see,
c) printing it out etc

If they have to see the information to do their job then they could conceivably remember enough to benefit from your confidential information.

This is a "human" issue not a technology issue. The positions you describe are roles with responsibility, requiring trust. The complete solution will involve securing your data as best you can (without insulting the honesty of your employees), hiring trustworthy staff, making them aware of their responsibility to protect company assets, and not doing anything that would make them feel aggrieved or defrauded.

Dale
Why don't you ask the Notes Wizards at
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

KK_
  • Locked
  • Question
Is there any way to get machine ID
Replies
1
Views
5K
pmonett
pmonett
MDGarcia
  • Locked
  • Question
Error msg: Network operation did not complete in a reasonable amount of time; please retry
Replies
5
Views
5K
MDGarcia
MDGarcia
P
  • Locked
  • Question
How to run an SPSS syntax from command line?
Replies
0
Views
5K
paulus62
P
MDGarcia
  • Locked
  • Question
Error in onLoad object
Replies
1
Views
5K
pmonett
pmonett
KK_
  • Locked
  • Question
Lotus approach
Replies
0
Views
5K
KK_
KK_

Part and Inventory Search

Sponsor

Back
Top