PMACS's CRUD (Create, Read, Update, Delete) Enforced Data Access Layer (CEAL) protects Penn Medicine's data against variety of attacks. It does so by restricting the web server's database access such that internal data is not accessible to anyone who is unauthorized. Malicious attempts to carry out a traditional attack (e.g., a SQL injection attack) would be unable to manipulate any data other than that for which the attacker is already authorized.
Greg Barendt, PMACS IT Senior Project Leader
iCalendar: http://www.upenn.edu/computing/group/sigcal/Apr1628PennMedicine.ics
Security SIG