Security Administration

The Development Center offers a group of security tools that are represented by the Security menu item on the DC menu bar.

These tools enable you to manage users and passwords, and provide an easy-to-use log-in interface. In addition, there are tools to administer file and field permissions and control file encryption. These tools support

Login

This tool enables you to log in under any previously defined user name and password. To log in, you must indicate a username and password. If the username has no associated password leave the password field empty.

Passwords

This tool enables you to change your password, provided that you are logged in as a user properly registered in the Users EntitySet. To change your current password, enter your current password, and then the new password.

Adding Users

The Users EntitySet provides support for the security functions. For a user to login, the user has to be registered in the Users EntitySet with the user name, a valid userid, and a valid groupid.

Permissions

When an object is created, it has all possible permissions for the owner, READ permission for users in the owner's group, and none for all other users (both members and non-members of the owner's group). Use this tool to change permissions, keeping track of them at the same time. Remember that to change permissions you have to be the owner or the super user.

This tool relies on information produced by the ZIMFILES utility. To refresh this information and make sure you are seeing the latest permissions information:

  1. Exit ZIM.
  2. Run the ZIMFILES.
  3. Start up Zim.
  4. Select the Refresh Permissions button in the Permissions Dialog.

To alter permissions, execute the following steps:

  1. Select the type of object (EntitySet, . . .) whose permissions you wish to modify.
  2. Select the object's owner from the list. This is a directory for all types of objects except fields which are owned by either an EntitySet or a relationship.
  3. Select the object itself. The current permissions are displayed.
  4. Modify the permissions for the User, the Group, and Others as necessary.
  5. Select the Update Permissions button.
  6. Once you are finished, select Close to close the Permissions window.

For more information, see Object Permissions and Securing Data Inside an Application.

Encryption

Once you have selected the Encryption option from the Security menu you can encrypt/decrypt all the data in specific EntitySets or relationships with fields, making (or unmaking) the data meaningless to anyone scanning the raw database file on disk. Remember that the encryption key is established when you initially create your database.

To encrypt or decrypt, use the following steps:

  1. Select whether you want to encrypt/decrypt an EntitySet or relationship.
  2. Select the directory which owns the object you wish to encrypt (decrypt).
  3. Select the object you are going to encrypt (decrypt).
  4. Select either Encrypt or Decrypt.

You use these tools to control access to the database, database records and record fields. The encryption support protects your data from unauthorized access by persons attempting to directly view the database using programs other than Zim.