Final Version: IBM Redbook about IDS Security

A new interesting Redbook Redbook has left the draft status and has been officially published:

• Security and Compliance Solutions for IBM IDS

Download the Redbook to gain an understandig on the robust and comprehensive security technology that IDS offers. IDS is IBM's safest and most performant data server for business critical data on the Linux, Unix and Windows platforms.

From the table of contents:

• Chapter 1. Technology overview
• Chapter 2. Role separation
• Chapter 3. Auditing
• Chapter 4. Securing data with SQL
• Chapter 5. Client-server communication
• Chapter 6. Server-server communication
• Chapter 7. Security issues with Backup and Restore
• Appendix A. Audit event mnemonics
• Appendix B. PAM API and macros

An excerpt from the preface:

In this book, we discuss in-details the security features available in IBM®
Informix® Database Server (IDS). These enriched IDS security features provide
you the capability to protect your data and comply with regulatory requirements.

We discuss how IDS integrates with operating system security functions for user
authentication and user permissions. The Role Separation divides the security
duty among administrators. Auditing enables the database server to log sensitive
operations performed by users and administrators for analysis and identifying
system misuses.

Discretionary Access Control (DAC) is the primary access control mechanism
that enables access to SQL objects using privileges and roles. Using
Label-based access control (LBAC), you can control read and write access of
users to individual rows and columns at the table level. We then discuss how to
secure server-server and server-client communication in an IDS environment as
well as address the security issues for backup and restore.