Your company decides to start the business of selling toys online and shipping globally. The E-Commerce system that supports the new business will be developed in-house. The development team is implementing the data persistence solution based on the relational database. The customer privacy data and credentials shall be protected from the access of the database administrator (DBA). Which of the following best addresses the requirement?
A. Limit the DBA’s access by joining tables into views
B. Use electronic codebook (ECB) cipher to protect data at rest
C. Implement role-based access control (RBAC)
D. Enable TLS/SSL transportation between clients and the server
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is B. Use electronic codebook (ECB) cipher to protect data at rest.
The database administrator (DBA) is the king in the world of databases. His role is the database administrator in terms of role-based access control (RBAC). He has access to all objects in the database. A view is just one type of database object. DBA has direct access to tables or other objects.
This key point of this question is about the projection of data persistence solutions or data at rest. Enabling TLS/SSL transportation between clients and the server is protecting the data in motion.