Security is a primary concern when communicating through a network. Basis is a "middleware" program developed by SAP that helps large corporations manage different applications. In the computer industry, middleware is a term used to describe programming that ties together different applications. Basis also supports interoperability and portability across several platforms and database products. In SAP’s Basis, the authorization matrix helps to secure the database by ensuring that only authorized parties gain access to the database.
The authorization matrix helps protect access to data in the SAP system by using authorization objects. The matrix grants authorization only after completing complex checks with multiple conditions. The authorization matrix also uses descriptive and technical terms to facilitate auditing efficiency and reliability. Each authorization gives permission to perform one or several tasks within the SAP system.
The matrix grants authorization based on the role of the individual in the organization. Composite profiles determine these roles. An individual can have multiple roles within the organization, and a composite profile can contain multiple user IDs. This allows one person to perform business operations associated with multiple roles. An organization should, however, take care not to create roles that result in redundant security measures within the system. For this reason, companies need to evaluate all composite profile periodically.
SAP developed Basis for organizations with many employees. The security configuration and administration within Basis uses a multiphase process, and this process helps to ensure adequate security, integrity of information and privacy of individuals within the organization. The security configuration also recognizes and implements user authentication. This helps to ensure integrity within the system by regulating secure access and requiring valid user authentication to access the application.
Assigning, Auditing and Monitoring
Basis uses a profile generator to automatically generate and assign authorization profiles to individuals. Authorized administrators create these profiles to increase or limit roles within the system. An auditing system tracks the authorization of every profile created in the system. The monitoring system, on the other hand, ensures the compliance of user activities. According to SAP, organizations should initiate these audits on a weekly, monthly, quarterly and yearly basis.