A-065 - Database (MariaDB - VPS-02)
Purpose
Store and manage business data used by the Dolibarr application.
Asset Type
- Platform
Description
- MariaDB database hosted on VPS-02
- Supports Dolibarr application backend
- Stores business-critical data (clients, invoices, transactions)
Criticality
- Critical
Sensitivity
- Highly Sensitive
Exposure Level
- Restricted
Trust Zone
- Heaven
Dependencies
- VPS-02 infrastructure
- Dolibarr application (A-064)
Relationships
- Provides data storage for Dolibarr
- Accessible by application layer only (local or restricted network)
Security Position (Architecture Context)
- High-value data storage component
- Not directly exposed to the internet but reachable via application compromise
- Compromise leads to data exfiltration or manipulation
Existing Protective Measures
- Database not publicly exposed
- Access restricted to application layer
- Basic authentication controls
Owner / Responsibility
- Operations Role (Ops)
Notes
- No dedicated network isolation yet (same host as application)
- Backup and encryption strategy not fully implemented