blog: improve note case study

Author: tianzhou

content/blog/note-case-study.md

@@ -9,11 +9,11 @@ description: 'How note inc. implements Just-in-Time (JIT) database access contro
 keypage: true
 ---
 
-> note ([note.com](https://note.com)) is a C2C content platform in Japan that empowers all types of creators and promotes creator economy. note was launched in 2014. note initially implemented an in-house database access system but faced challenges in efficiency and security. By adopting Bytebase, note streamlined access control, enhanced security, and reduced operational costs.
+> note ([note.com](https://note.com)) is a C2C content platform in Japan that empowers creators of all types and promotes the creator economy. Founded in 2014, note initially implemented an in-house database access system but faced challenges with efficiency and security. By adopting Bytebase, note streamlined access control, enhanced security, and reduced operational costs.
 
 ## Data Access Control Challenges at note
 
-Given that note manages data for millions of users, safeguarding user information is paramount. Typically, the internal development team does not have direct access to production databases containing user data. However, accessing these databases is often necessary for troubleshooting production issues. Effectively managing such just-in-time (JIT) access while ensuring compliance is essential for note.
+As note manages data for millions of users, safeguarding user information is paramount. The internal development team does not have direct access to production databases containing user data. However, database access is often necessary for troubleshooting production issues. Effectively managing just-in-time (JIT) access while ensuring compliance is essential for note.
 
 ## Tackling the Challenge with an In-House Solution
 
@@ -28,37 +28,37 @@ To address this challenge, note built a process to manage database access reques
 - **Internal SSH proxy server-based access**
   Developers use the issued credentials to connect through an internal SSH proxy server.
 
-However, after running this process for some time, they encountered notable limitations:
+However, after running this process for some time, note encountered several limitations:
 
-- **Fragmented process**: Developers had to repeatedly request and configure accounts manually, leading to inefficiencies.
-- **Overly broad permissions**: Developers could access all table columns, including sensitive data that wasn’t necessary for debugging.
-- **High maintenance costs**: Admins had to maintain the in-house tool, SSH proxy server, and troubleshoot workflow issues.
+- **Fragmented process**: Developers had to repeatedly request and configure accounts manually, creating inefficiencies.
+- **Overly broad permissions**: Developers could access all table columns, including sensitive data unnecessary for debugging.
+- **High maintenance costs**: Administrators had to maintain the in-house tool, SSH proxy server, and troubleshoot workflow issues.
 
 ## Bytebase Provides a One-Stop Database Access Control Solution
 
-After extensive research, note’s SRE team selected Bytebase to replace their in-house solution, effectively addressing the challenges of fragmented processes, broad access permissions, and high maintenance costs. Bytebase acts as middleware between humans and databases, ensuring secure, efficient, and compliant just-in-time (JIT) access management.
+After extensive research, note's SRE team selected Bytebase to replace their in-house solution, effectively addressing the challenges of fragmented processes, overly broad access permissions, and high maintenance costs. Bytebase acts as middleware between users and databases, ensuring secure, efficient, and compliant just-in-time (JIT) access management.
 
 ![sso-bb](/content/blog/note-case-study/sso-bb.webp)
 
-Bytebase provides various capabilities to enable more secure and efficient database access, including a unified web-based SQL Editor with fine-grained sensitive data masking and role-based access control.
+Bytebase provides various capabilities that enable more secure and efficient database access, including a unified web-based SQL Editor with fine-grained sensitive data masking and role-based access control.
 
 ![jit](/content/blog/note-case-study/jit.webp)
 
 ### Web-based SQL Editor
 
-Bytebase offers a [web-based SQL Editor](https://docs.bytebase.com/sql-editor/overview/) that consolidates all permissions management and data access operations into a single tool. This eliminates the need for the in-house tool, SSH proxy server, and local database clients, allowing developers to submit permission requests and access the database in one place, greatly improving convenience.
+Bytebase offers a [web-based SQL Editor](https://docs.bytebase.com/sql-editor/overview/) that consolidates all permission management and data access operations into a single tool. This eliminates the need for the in-house tool, SSH proxy server, and local database clients, allowing developers to submit permission requests and access databases from one location, significantly improving convenience.
 
 ![sql-editor](/content/blog/note-case-study/sql-editor.webp)
 
 ### Dynamic Data Masking
 
-Bytebase offers column-level [dynamic data masking](https://docs.bytebase.com/security/data-masking/overview/) for our Aurora MySQL databases. When granting access permissions to developers for specific tables, sensitive columns can be dynamically masked based on the user's identity during data queries.
+Bytebase offers column-level [dynamic data masking](https://docs.bytebase.com/security/data-masking/overview/) for Aurora MySQL databases. When granting access permissions to developers for specific tables, sensitive columns are dynamically masked based on the user's identity during data queries.
 
 ![ddm](/content/blog/note-case-study/ddm.webp)
 
 ### Role-Based Data Access Control
 
-Bytebase provides role-based database access control, which can implement table-level access control. This permission management is independent of the database account system and is managed by Bytebase. This brings two benefits:
+Bytebase provides role-based database access control that implements table-level access control. This permission management is independent of the database account system and is managed entirely by Bytebase, providing two key benefits:
 
 - All permissions and actions can be precisely tracked to individuals.
 - Developers cannot access database credentials.
@@ -86,12 +86,18 @@ Access request notifications will be pushed to Slack.
 
 ## Next Steps
 
-After implementing Bytebase's database access control, the following issues have become apparent. In response, note is considering further leveraging Bytebase's capabilities to address these challenges:
+After implementing Bytebase's database access control, note identified additional opportunities for improvement. In response, note is considering further leveraging Bytebase's capabilities to address these areas:
 
 - [CI/CD for DML and DDL changes](https://docs.bytebase.com/change-database/change-workflow/)
 
-  At present, only read queries are utilized; the aim is to enable modifications for both DML and DDL directly on Bytebase.
+  Currently, only read queries are utilized; the goal is to enable both DML and DDL request/review/deploy process directly through Bytebase.
 
 - [GitOps workflow with GitHub](https://docs.bytebase.com/gitops/overview/)
 
-  Given that SQL is currently managed through GitHub Issues in the existing business process, the introduction of GitOps is expected to enhance operational efficiency.
+  Since SQL is currently managed through GitHub Issues in the existing business process, introducing GitOps is expected to enhance operational efficiency.
+
+---
+
+_To learn more, check out our JIT Database Access Whitepaper👇_
+
+[![jit-whitepaper-cover](/content/whitepaper/just-in-time-database-access/cover-horizontal.webp)](/content/whitepaper/just-in-time-database-access/bytebase-whitepaper-just-in-time-database-access-best-practices.pdf)

public/content/blog/note-case-study/banner.webp

@@ -15,7 +15,7 @@ export default function Page() {
       <div className="col-span-5 lg:col-span-8 sm:col-span-full">
         <div className="relative w-full" style={{ paddingBottom: 'calc(22/17 * 100%)' }}>
           <Image
-            src="/content/whitepaper/just-in-time-database-access/cover.webp"
+            src="/content/whitepaper/just-in-time-database-access/cover-vertical.webp"
             alt="Just-in-time Database Access Whitepaper Cover"
             width={612}
             height={792}