Home
SecurityYou can secure your HCL OneDB™ database server and the data that is stored in your HCL OneDB™ databases. You can encrypt data, secure connections, control user privileges and access, and audit data security.
Security in HCL OneDB™The HCL OneDB™ Security Guide documents methods for keeping your data secure by preventing unauthorized viewing and altering of data or database objects, including how to use the secure-auditing facility of the database server.
Securing data
Label-Based Access ControlYou can use label-based access control (LBAC), an implementation of multi-level security (MLS), to control who has read access and who has write access to individual rows and columns of data.
Security policiesSecurity policies are database objects that you create and use to protect tables from unauthorized access.
Creating security policiesYou create security policies after you have created security label components.

Creating security policies

You create security policies after you have created security label components.

Before you begin

You must hold the DBSECADM role to create a security policy. The maximum number of security label components with which you can build a security policy is 16.

About this task

The order in which you list security label components when you create a security policy does not indicate any sort of precedence or other relationship among the components, but it is important to know the order when creating security labels with built-in SECLABEL functions.

Procedure

Create a security policy by issuing the CREATE SECURITY POLICY statement, as described in HCL OneDB™ Guide to SQL: Syntax.

Example

The following example shows this SQL statement, where company is the security policy name and region and department are security label components used in the policy:

CREATE SECURITY POLICY company
   COMPONENTS region, department;