StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
12199194
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
2
CommunityOwnedDate
CreationDate
2012-08-30T14:27:39.133
FavoriteCount
0
LastActivityDate
2012-08-30T14:54:21.813
LastEditDate
2012-08-30T14:54:21.813
LastEditorUserId
1634846
OwnerUserId
1634846
ParentId
12193225
PostTypeId
2
Score
1
ViewCount
0
LastEditorDisplayName
text
Body
The system should store an audit log somewhere. It is best if it is stored in a separate database to non-security data or otherwise kept separate. The audit log is used to observe user behaviour as part of non-repudiation. It is the only way of policing the behavior of administrators and other users with few restrictions. Many organizations will require an audit log for compliance with SOX (Sarbanes-Oxley), HIPAA, PCI-DSS or supply-chain contracts. The audit log should have some form of simple tamper detection, such as a HMAC. Operations to purge or backup old audit log entries should also add an entry to the audit log. [Edit: Added more details on request] Non-repudiation is a very fancy way of saying "You can't claim you didn't do it" (http://en.wikipedia.org/wiki/Non-repudiation). For example, if a user uploads troublesome data then claims it was not him or her, an audit log showing the fact that the user logged on when no one else was would be very useful. An HMAC is a Hashed Message Authentication Code (see <a href="http://en.wikipedia.org/wiki/Hash-based_message_authentication_code" rel="nofollow">http://en.wikipedia.org/wiki/Hash-based_message_authentication_code</a> or <a href="http://www.ietf.org/rfc/rfc2104.txt" rel="nofollow">http://www.ietf.org/rfc/rfc2104.txt</a>). This is a cryptographic algorithm where you have a secret number, append it to the data and take a hash. This might be difficult to calculate without libraries and is probably a bit ahead of where you want to be.
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POWhy should systems record, in the database, who has logged in and when? Compliance, security, auditability?
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USakton
UserOwnerUserId
1. USakton
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COThanks akton - as it's not a finacial system, not sure how relevant SOX etc are. Please explain non-repudiation and HMAC a little?
 singulars
 PostPostId
 PO
 UserUserId
 USSteve
2. COI have added more to the answer above.
 singulars
 PostPostId
 PO
 UserUserId
 USakton

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.