





































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An in-depth analysis of database security, discussing its history, importance, and practical measures to ensure data privacy and prevent data breaches. Topics covered include database security procedures, data breaching, data privacy, practical security measures, server security, trusted ip addresses, database connection, table access control, database auditing, and possible locations for auditing.
Typology: Slides
1 / 45
This page cannot be seen from the preview
Don't miss anything!






































7/7/2012 1
7/7/2012 Section 1 2
Database Security History of Data Breeching Data Privacy Practical Security Measures Native Auditing Database Auditing Possible Locations for Auditing
7/7/2012 4
Databases are always vulnerable to data stealing In the early days of databases, it was very much difficult to make a practical access to databases. The databases were launched on a mainframe computer (not accessible to every one). As the databases shifted to LINUX, UNIX and windows, the problem started and gradually became an important issue regarding database security
90 % organization info[1]
7/7/2012 5
Any unauthorized access to company data comes under the paradigm of data breeching.
In other words it is nothing more than data stealing.
7/7/2012 7
Data privacy can be taken as a law.
Prediction of the organization operations became easy if
Intrusions may be internal or external to the organization
DB is accessed
80% attacks are internal[4]
7/7/2012 8
Server Security
Trusted IP Address
Database Connection
Table Access Control
7/7/2012 10
It should be known to DBA that who is allowed to interact with the database
This means that only trusted IP should be allowed to access the database. Report all unauthorized access to the DBA
Governmentsecurity,URLhttp://www.governmentsecurity.org/articles/DatabaseSecurityCommon-sensePrinciples.phpdocsity.com
7/7/2012 11
Default user name and passwords are never a good strategy
In certain cases users are allowed to perform dynamic updates to database. In such a situation system administrator should validate these updates first before actually applying it to the database
7/7/2012 14
The need for auditing starts as application is launched in to operation
Monitor all activities by all users
DBA monitoring is the need of the hour Report only suspicious activities of users
7/7/2012 15
Governmentsecurity,URLhttp://www.governmentsecurity.org/articles/DatabaseSecurityCommon- sensePrinciples.php 17
Possible Location for Auditing
Auditing within
Client DBMS Client and DBMS
7/7/2012 18
It is inefficient in certain cases as we have to restrict our clients to a specific software program. This is not possible in most cases.
This might cause problem with several databases to be handled at the same time. The turning on of auditing mechanism can cause performance penalty.
7/7/2012 20
Connection Auditing
C2 Auditing
SQL Trace
7/7/2012 21