Running head: ANALYZING DATABASE SECURITY
Database Security Plan
Course Number and Title
Wild Wood Apartment user’s data access needs
Database used: PHPMyAdmin MYSQL
Active database users: database administrator, Managers: Others include security admin
Tables: Tenants, Managers, revenue, expense, complexunit, apartmentscomplex
User’s access needs
Database administrator Needs
Ability to view all tables
Ability to add, edit and delete records for tenants and managers
Create queries as desired
Ability to create or remove database objects
DB admin permissions
Managers Needs to
View limited tables with constraints
To add, edit records of tenants
Insert reports on revenues and expenses and editing as editing entries they entered
View their own details
Since most of the information contained in the databases are confidential and critical to the
public permissions are restricted to viewing information on the complexes, their units and other
attributes about them.
This process verifies that user is who they claim to be. PHPMyadmin SQL server does through a
username and password. Through which a user is granted access to the database
This process assigns permissions to database users to what database objects they can access.
Each and every permission in a database is distinct should be granted specifically. Through this
PHPMyadmin allows a user to define users and their privileges graphically. Once a user has been
authenticated their usernames are mapped onto what they are authorized to do in the database.
These privileges are defined and implemented by the database administrator.
The following roles are created: