A method and a system for preventing impersonation of a database user

摘要

A method for preventing an administrator impersonating a user of a relational database, which database at least comprises a table with at least a user password, wherein said password is stored as a hash value. The method comprises the steps of: adding a trigger to said table, said trigger at least triggering an action when an administrator alters said table through the database management system (DBMS) of said database; calculating a new password hash value differing from said stored password hash value when said trigger is triggered; and replacing said stored password hash value with said new password hash value.