Overview
As we all know, data security is a never-ending battle. Every day, we hear of new data breaches. It’s a hard problem, and there is no single solution, other than a defense in depth. Let’s look at one of those defenses for databases: query control.
Query control is a simple idea: most applications access their database(s) in a fairly predictable way. We can therefore record the requests from these applications during a period of time (like during testing). We’ll call this the recording phase. Once we’re satisfied that we’ve seen all the request types we’re likely to see, we can