Securing and Sharing Information in Microsoft Office Access 2007

  • 1/3/2007
Contents
In this chapter from Microsoft Office Access 2007 Step by Step, you will explore ways to protect data from accidental or intentional corruption, and ways to make it difficult for unauthorized people to gain access to private information. Then you will learn about ways of sharing databases among team members and backing up a shared database.

In this chapter, you will learn to:

  • ✓ Assign a password to a database.

  • ✓ Prevent changes to database code.

  • ✓ Secure a database for distribution.

The need for database security is an unfortunate fact of life. As with your house, car, office, or briefcase, the level of security required for your database depends on the value of what you have and whether you are trying to protect it from curious eyes, accidental damage, malicious destruction, or theft.

The security of a company’s business information can be critical to its survival. For example, you might not be too concerned if a person gained unauthorized access to your products list, but you would be very concerned if a competitor managed to see—or worse, steal—your customer list. And it would be a disaster if someone destroyed your critical order information.

Your goal as a database developer is to provide adequate protection without imposing unnecessary restrictions on the people who should have access to your database. The type of security required to protect a database depends to a large extent on how many people are using it and where it is stored. If your database will never be opened by more than one person at a time, you don’t have to worry about the potential for corruption caused by several people trying to update the same information at the same time. If your database is sold outside of your organization as part of an application, you will want to take steps to prevent it from being misused in any way.

TIP

In previous versions of Access you could set up workgroups and assign permissions to restrict the information available to members of each group and the actions they can perform. Access 2007 doesn’t offer this feature.

Another way to protect a database is by securing the distribution channel; for example, by making it available from a password-protected Web site.

In this chapter, you will explore ways to protect data from accidental or intentional corruption, and ways to make it difficult for unauthorized people to gain access to private information. Then you will learn about ways of sharing databases among team members and backing up a shared database.

SEE ALSO

Do you need only a quick refresher on the topics in this chapter? See the Quick Reference section at the beginning of this book.

IMPORTANT

httpatomoreillycomsourcemspimages1121674.jpg

Before you can use the practice files in this chapter, you need to install them from the book’s companion CD to their default location. See “Using the Companion CD” at the beginning of this book for more information.

TROUBLESHOOTING

Graphics and operating system–related instructions in this book reflect the Windows Vista user interface. If your computer is running Windows XP and you experience trouble following the instructions as written, please refer to the “Information for Readers Running Windows XP” section at the beginning of this book.

Assigning a Password to a Database

You can prevent unauthorized users from opening a database by assigning it a password. Access will prompt anyone attempting to open the database to enter the password. The database will open only if the correct password is entered.

Creating a Secure Password

You can use any word or phrase as a password, but to create a secure password, keep the following in mind:

  • Passwords are case-sensitive.

  • You can include letters, accented characters, numbers, spaces, and most punctuation.

A good password includes uppercase letters, lowercase letters, and symbols or numbers, and isn’t a word found in a dictionary. For more information about strong passwords, visit

www.microsoft.com/athome/security/privacy/password.mspx

A secondary benefit of assigning a password is that your database will automatically be encrypted each time you close it, and decrypted when you open it and provide the correct password.

TIP

In previous versions of Access, encrypting and decrypting a database was a separate function from assigning a password to it. If you open a database created in Access 2002 or Access 2003 from Access 2007, you will still have the option of encoding or decoding it, which is what the process was called in those versions.

It is easy to assign a database password, and certainly better than providing no protection at all, in that it keeps most honest people out of the database. However, many inexpensive password recovery utilities are available, theoretically to help people recover a lost password. Anyone can buy one of these utilities and “recover” the password to your database. Also, because the same password works for all users (and nothing prevents one person from giving the password to many other people), simple password protection is most appropriate for a single-user database.

To assign a password to or remove a password from a database, you must first open the database for exclusive use, meaning that no one else can have the database open. This will not be a problem for the database used in the following exercise, but if you want to set or remove a password for a real database that is located on a network share, you will need to make sure nobody else is using it.

Database Encrypting

A database created in Microsoft Office Access 2007 is a binary file; if you open it in a word processor or a text editor, its content is mostly unreadable. However, if you look closely enough at the file, you can discover quite a bit of information. It is unlikely that enough information will be exposed to allow someone to steal anything valuable. But if you are concerned that someone might scan your database file with a utility that looks for key words that will lead them to restricted information, you can encrypt the file to make it really unreadable.

In previous versions of Access, the process of encoding (encrypting) a database and assigning a password were separate. In Access 2007, they have been combined as one command.

Encrypting a file prevents people who don’t have a copy of Access from being able to read and perhaps make sense of the data in your file.

In this exercise, you will assign a password to a database.

USE the Password database. This practice file is located in the Documents\Microsoft Press\Access2007SBS\Securing folder.

BE SURE TO start Access before beginning this exercise, but don’t open the Password database yet.

  1. Click the Microsoft Office Button, and then on the menu, click Open.

    httpatomoreillycomsourcemspimages1121720.jpg

    Microsoft Office Button

  2. In the Open dialog box, navigate to the Documents\Microsoft Press\Access2007SBS\Reports folder, and click (don’t double-click) the Password database. Then click the Open arrow, and in the list, click Open Exclusive.

    httpatomoreillycomsourcemspimages1122342.png

    Access opens the database for your exclusive use—no one else can open the database until you close it.

  3. On the Database Tools tab, in the Database Tools group, click the Encrypt with Password button.

    The Set Database Password dialog box opens.

    TIP

    Access 2007 includes many database-management tools. Familiarize yourself with the commands available from the Database Tools tab. From this tab you can, for example, display an object’s dependencies, document the entire database, and update the linked tables.

  4. In the Password box, type 2007!SbS, and then press the httpatomoreillycomsourcemspimages1121704.jpg key.

    httpatomoreillycomsourcemspimages1122344.png

    Access disguises the characters of the password as asterisks as you type them, to protect against other people seeing your password.

  5. In the Verify box, type 2007!SbS. Then click OK.

  6. Close and reopen the database.

    The Password Required dialog box opens.

    httpatomoreillycomsourcemspimages1122346.png

  7. In the Enter database password box, type 2007_SBS, and then click OK.

    Access warns you that the password is not valid.

  8. In the Microsoft Office Access message box warning you that the password you entered is not valid, click OK.

  9. In the Password Required dialog box, type the correct password (2007!SbS), and then click OK.

    The database opens.

CLOSE the Password database.

TIP

To remove a password from a database, open the database exclusively, entering the password when prompted to do so. On the Database Tools tab, in the Database Tools group, click the Decrypt Database button. Enter the password, and then click OK. Access removes the password, allowing anyone to open the database.

Save to your account

This chapter is from the book