The Result Data Newsletter   
Volume 710 - October 2007   
© Copyright 2007 Result Data Consulting, Ltd.  614-505-0770  www.resultdata.com   

    Result Data Home Page  |  Newsletter Archive  |  Upcoming Events  |  Classes & Workshops  |  Request Information
Upcoming Events:  Mid Ohio BusinessObjects User Group: 11/14, Data to Dashboards: 11/14, Microsoft Data Mgt & BI Seminar:  12/14, Microsoft SQL Server User Group:  12/14

Return to Newsletter Contents...

 

How Thick Is Your Security Blanket?

by: Troy Gottfried, Sr. BI Consultant, BECP

A Greek proverb reads, “First secure an independent income, then practice virtue.  While that sounds like good advice in today’s volatile market, the gist of the proverb proves a valuable paradigm to follow in Enterprise security.  Perhaps we could rephrase the proverb as follows:  First secure your BI platform, then distribute content.

Contrary to popular belief, no one wants to keep users from accessing the information they need.  Many times, security is strict in order to simplify the administrative tasks necessitated by a complex platform.  In this article we take a brief look at the all of the components of the Enterprise platform that need attention with regard to security.

First and foremost, the reports, documents, and other content in Enterprise need to be secured.  Generally speaking, this is referred to as Folder and Object security.  The question we need to ask ourselves as Enterprise Administrators in this first step is, “Who needs access to which reports?”

Once the first question has been addressed (and documented), we follow up with, “What do they need to do with those reports?”  In Enterprise, we can run reports on demand, schedule reports, view instances, and even modify the content.  Satisfying this question allows us to easily modify our existing paradigm to add functionality to the way our users interact with those reports.

If our reports or documents are based on one of the two semantic layers available (Universes and Business Views), we now need to consider another level of security.  If a user or group is granted permissions to view the report, what information are they supposed to see on the report?  This requires extensive documentation and careful planning for a successful security implementation to work.  Across the two semantic layers, we can control accessibility to objects, rows, columns, tables, views and many other pieces of the underlying information layer.  It is not enough anymore to simply grant access to the appropriate reports without securing the information as well.

After successfully securing the content, we need to meet application security requirements.  Enterprise consists of many different applications, from Voyager, to Web Intelligence, to Desktop Intelligence, to Performance Manager and even InfoView.  There are even other applications that fit into the Enterprise platform.  Certain users will require more functionality than others with these applications.

If implemented correctly, a security paradigm that takes into account all of the above will serve both users and administrators well.  The most valuable aspect of implementing security is planning and documentation.  Wouldn’t you rather your security blanket be nice and warm?  Rest well.

Go to Top  |  Return to Newsletter Contents

The Result Data Newsletter is published approximately once a month to share the latest information on business intelligence, data management and CRM. There should be a link below to allow you to change or remove yourself from our list. We take your requests very seriously. If you have any difficulty please contact us at 614-505-0770 and we will make sure that your request is handled properly. This is not intended to be an unsolicited message and you can reach us in person if needed.

© Copyright 2007 Result Data Consulting, Ltd. - All Rights Reserved
All trademarks and copyrights are the property of their respective owners. This information is provided without warranty.
Announcements
Fall Training Special
Get a jump on your Christmas shopping!  Schedule and attend any public training class now through December and receive a FREE $50 gift card to Target, Barnes & Nobles or Best Buy (restrictions apply).  Call 614-505-0770 for further details and restrictions.
Next MOBOUG Meeting
 The next Mid-Ohio Business Objects User Group (MOBOUG) meeting is November 14, 2007.  Call 614-505-0770 or click here to reserve your seat.
Data to Dashboards
Join us on November 14th to learn about the methods and tools that can transform your data into highly functional and robust dashboards, reports and analytics.  Data-to-Dashboards will provide an overview as well as live demonstrations of the complete process that collects, transforms and delivers your data using industry leading Business Intelligence software.  Enjoy a comprehensive review of the concepts and tools that deliver top quality BI content to your user community.  Call 614-505-0770 or click here to reserve your seat.
Looking for a Few Good Men and Women
 Join our award winning team of Business Intelligence consultants and .Net Software developers.
Send your resume and salary requirements to: jobs@resultdata.com
Next Microsoft Data Management & BI Seminar
 The next free Microsoft BI seminar is on Dec. 14, 2007.  Call 614-505-0770 or click here to reserve your seat.
Next Microsoft SQL Server User Group
 The next free Microsoft User Group is on Dec. 14, 2007.  Call 614-505-0770 or click here to reserve your seat.