

















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Material Type: Notes; Class: Database Sys Implement; Subject: Computer Science; University: Georgia Institute of Technology-Main Campus; Term: Spring 2004;
Typology: Study notes
1 / 25
This page cannot be seen from the preview
Don't miss anything!


















Database Security
Source: http://www.gocsi.com/
High
Low 1980 1985 1990 1995 2000
password guessing
self-replicating code
password cracking
exploiting known vulnerabilities
disabling audits
back doors hijacking sessions
sweepers
sniffers
packet spoofing
GUI automated probes/scans
denial of service
www attacks
Tools
Attackers
Intruder Knowledge
Attack Sophistication
“stealth” / advanced scanning techniques
burglaries
network mgmt. diagnostics
distributed attack tools
Cross site scripting
Staged attack
Copyright: CERT, 2000
Goals of DB Security
Access Control
- Access control policy : specifies the
- Access control mechanism : implements
Access Control
Access Control - Basics
Access Control Models
grants privileges to users, including the capability to access specific data files, records, or fields in a specific mode (such as read, insert, delete, or update).
classifies users and data into multiple levels of security, and then enforces appropriate rules.
Access Matrix Model (cont.)
Access Matrix Model (cont.)
subjectobject^ O1^ ….^ Oi^ ….^ Om S S ….
Sn
A[S1,O1] A[S1,Oi] A[S1,Om] A[S2,O1] A[S2,Oi] A[S2,Om]
A[Sn,O1] A[Sn,Oi] A[Sn,Om]
GRANT SCHEMA DB-schema-name AUTHORIZATION users ;
GRANT privileges ON object TO users [WITH GRANT OPTION]
REVOKE [GRANT OPTION FOR] privileges ON object FROM users {CASCADE | RESTRICT}
Privileges: SELECT,INSERT,DELETE,UPDATE,REFERENCES
DAC by Views
L. White Candy 28,000 G.R. Green
S. Red Toy 43,000 K. Brown
J. Black Toy 25,000 S. Red
Name Dept. Salary Manager
Employee relation
CREATE VIEW toy_dept AS SELECT Name,Salary, Manager FROM Employee WHERE Dept.=“Toy”
S. Red 43,000 K. Brown
J. Black 25,000 S. Red
Name Salary Manger
toy_dept view
DAC by Grant and Revoke
Brown (owner)
Black (^) Red
White
GRANT SELECT ON Employee TO Red GRANT SELECT ON Employee TO Black WITH GRANT OPTION ? Brown revokes grant given to Black ? Brown does not want Red to access the Employee relation GRANT UPDATE(Salary) ON Employee TO White
Weakness of Discretionary Access
Control
Revoked Privilege
System
user1 user
user3 user
(System, user1, SELECT ON EMPLOYEE WITH GRANT OPTION)
Granted Privilege
Authorization Graph
Summary
Multilevel Relation and
Polyinstantiation
smith
NAME SALARY DEPTNO SECURITY CLASS
100000 5 S brown 80000 C
smith null 5 C
EMP-ID
4
1 2
1
MAC
MAC – Bell-LaPadula (BLP) Model
Axioms
Role Based Access Control
RBAC Motivation
Role-Based Access Control
RBAC 0
Users
Roles
Permissions
Sessions
User assignment
Permission assignment
Solutions for Inference Control
Statistical Database Security
Statistical Database Security
Statistical databases are used to produce statistics on various populations. Features are:
Techniques for protecting privacy of individual information solutions are illustrated by examples:
Person(name, ssn, income, address,city, state, zip, sex, last_degree) Suppose we are allowed to retrieve only the statistical information over this relation by using SUM, AVG, MIN, MAX, COUNT etc,.
Statistical Database Security
select COUNT(*) from Person where last_degree = “ph.D.” and sex = “F” and city = “Calgary” and state = “Alberta”;
If we know Mary Black is ph.D. and live in Calgary and we want to know her income, we may use the above two queries.
The following two queries are valid:
select AVG(income) from Person where last_degree = “ph.D.” and sex = “F” and city = “Calgary” and state = “Alberta”;
Q1: find the total number of women who have ph.D. and live in Calgary, Alberta.
Q1: find the average income of women who have ph.D. and live in Calgary, Alberta.