Download Database Security

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
Document related concepts

Abstraction (computer science) wikipedia , lookup

Relational model wikipedia , lookup

Object-relational impedance mismatch wikipedia , lookup

Transcript 
Database Security
Carl J. Hoppe
20 November 2013
Outline
• What is Database Security?
• The Key Points of Database Security.
• Steps to Protect a Database.
• Threats to a Database.
• My Experiences with Database Security.
What is Database Security?
• The use of a broad range of information security controls to protect
databases against compromises of their confidentiality, integrity
and availability.
• Database security is a specialist topic within the broader realms of
computer security, information security and risk management.
Key Points of Database Security
• Database security is based upon many types of Information Security.
• Access Control
• Auditing
• Authentication
• Encryption
• Backups
• Integrity Controls
• Application Security
Steps to Protect a Database
Steps to Protect a Database(cont.)
• Plan
• Establish standards and policies to guide the rest of the process.
• Discover and Assess
• Enumerate the databases, determine what applications use them,
what data they contain, and who owns the system and data.
Steps to Protect a Database(cont.)
• Secure
• Based on the results of the assessments, update and secure the
databases. Lock down access channels and look for any entitlement
issues.
• Monitor
• Database activity monitoring and database auditing
• Database Management Systems (DBMS)
Steps to Protect a Database(cont.)
• Protect
• Apply preventative controls to protect the data as users and systems
interact with it.
• Manage
• Management of ongoing systems and application management;
configuration management, patch management, and change
management.
• Database Management Systems (DBMS)
Threats to a Database
• Data corruption
• Design flaws and programming bugs
• Performance constraints and capacity issues
• Malware
• Unauthorized access
My Experiences with Database Security
• Data Center Building Access
• Key card requirements
• Database Management Systems (DBMS)
• Managing the capacity
• Managing the sensors
Conclusion
• What is Database Security?
• The Key Points of Database Security.
• Steps to Protect a Database.
• Threats to a Database.
• My Experiences with Database Security.
References
• https://securosis.com/projectquant/project-quant-databasesecurity-process-framework/
• http://en.wikipedia.org/wiki/Database_security
Related documents
Database Management Systems - University of Hawaii at Hilo
Database Management Systems - University of Hawaii at Hilo
Diapositive 1
Diapositive 1
Introduction - Rose
Introduction - Rose
Text 13 Database Management Systems
Text 13 Database Management Systems
Learn about databases here
Learn about databases here
Database Management System Module Title: CAP 364 Module ID
Database Management System Module Title: CAP 364 Module ID
Q4 – How do database applications make databases more useful?
Q4 – How do database applications make databases more useful?
Chapter 11 PowerPoint Question Solution Describe the five logical
Chapter 11 PowerPoint Question Solution Describe the five logical
91.309/310 Database
91.309/310 Database
Database Design
Database Design
No Slide Title
No Slide Title
ITE252 Slide 1 - Nassau Community College
ITE252 Slide 1 - Nassau Community College
CCN2124 Introduction to Databases
CCN2124 Introduction to Databases
chapter 8: managing data resources
chapter 8: managing data resources
Slide 1
Slide 1
database management system
database management system
Database
Database
Mar10IntroDB
Mar10IntroDB
Principles of Database Design
Principles of Database Design
Database System
Database System
Principles of Database Design
Principles of Database Design
Intro to Databases
Intro to Databases