Access security

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • drmike
    New Member
    • Apr 2008
    • 3
    #1

    Access security

    I expect that this has been asked before - in which case I apologise.

    I need to make it difficult and ideally impossible for someone to view/extract the data from an Access database without suitable passwords. The application is installed in about 100 shops across the UK and we can't dictate to the users how their PC/network is set up so I don't think we can use windows security.

    The usual password protection seems very weak as it can be cracked in minutes using free software.

    We thought of writing encryption routines that would sit between the VB.NET application that uses the database and the actual data but that seems to create a raft other other issues.

    Any help and advice would be wlecomed.

    Thanks

    Mike
    Tags: None
    • pdebaets
      New Member
      • Mar 2008
      • 16
      #2
      Have you considered securing and encrypting your database back end?

      Here's a book that might help: http://www.amazon.com/Microsoft-Access-Database-Protection-Security/dp/1590591267

      If these are not sufficient, then you may want to consider using SQL Server.

        Comment

        • NeoPa
          Recognized Expert Moderator MVP
          • Oct 2006
          • 32656
          #3
          I'm afraid if Windows and Access security are denied to you thet you're in trouble.

          Possibly your only real solution is to migrate the database to different software.

          I suppose that depends on how critical the security is in your situation.

            Comment

            • drmike
              New Member
              • Apr 2008
              • 3
              #4
              Originally posted by NeoPa
              I'm afraid if Windows and Access security are denied to you thet you're in trouble.

              Possibly your only real solution is to migrate the database to different software.

              I suppose that depends on how critical the security is in your situation.
              Well my client says it's very important but I'm not convinced that a technical solution is teh way forward, I'd go for legal routes myself.

              Thanks for the reply it does help me with the client.

              Mike

                Comment

                • drmike
                  New Member
                  • Apr 2008
                  • 3
                  #5
                  Originally posted by pdebaets
                  Have you considered securing and encrypting your database back end?

                  Here's a book that might help: http://www.amazon.com/Microsoft-Access-Database-Protection-Security/dp/1590591267

                  If these are not sufficient, then you may want to consider using SQL Server.
                  Thanks, I'll look at the book. SQL Server isn't a relistic option as we have so many different cleints with different levels of sophistication and little influence on how they configure their systems otherwise we'd use the Windows authentication etc. Incidentally it seems that without using Windows authentication cracking SQL passwords isn't hard.
                  Mike

                    Comment

                    Previous template Next
                    Working...