The central idea behind multiverse databases is to push the data access and privacy rules into the database itself. The database takes on responsibility for authorization and transformation, and the application retains responsibility only for authentication and correct delegation of the authenticated principal on a database call. Such a design rules out an entire class of application errors, protecting private data from accidentally leaking.
[my emphasis]
What's surprising, even I may say shocking, is that Codd's RM from nearly the beginning was designed to implement just that: data integrity co-located with said data; such a deal. For some decades now, coders have subverted the RDBMS into just a conveniently backed-up file store, whilst keeping data integrity firmly moated in client code.
I can't say that I'd choose MySql as the engine, though.
No comments:
Post a Comment