Data Validation & Security.

Slides:

Advertisements

Similar presentations

CLEARSPACE Digital Document Archiving system INTRODUCTION Digital Document Archiving is the process of capturing paper documents through scanning and.

Advertisements

Monday, 08 June 2015Dr. Mohamed Osman1 What is Database Administration A high level function (technical Function) that is responsible for ► physical DB.

Database Integrity, Security and Recovery Database integrity Database integrity Database security Database security Database recovery Database recovery.

Oct 31, 2000Database Management -- Fall R. Larson Database Management: Introduction to Terms and Concepts University of California, Berkeley School.

Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Introduction to Databases Transparencies

Chapter 8 Security Transparencies © Pearson Education Limited 1995, 2005.

Functions of a Database Management System. Functions of a DBMS C.J. Date n Indexing n Views n Security n Integrity n Concurrency n Backup/Recovery n Design.

Module 8 ********* Data Validation & Security Workforce Information Database Training Last update November 2006.

Copyright ©2014 Pearson Education, Inc. Chapter 3 Requirements and Business Rules Chapter3.1.

Software Development Unit 2 Databases What is a database? A collection of data organised in a manner that allows access, retrieval and use of that data.

REDCap Overview Institute for Clinical and Translational Science Heath Davis Fred McClurg Brian Finley.

Security of Data. Key Ideas from syllabus Security of data Understand the importance of and the mechanisms for maintaining data security Understand the.

1 Intro to Info Tech Database Management Systems Copyright 2003 by Janson Industries This presentation can be viewed on line at:

XP New Perspectives on Microsoft Office Access 2003 Tutorial 12 1 Microsoft Office Access 2003 Tutorial 12 – Managing and Securing a Database.

DAY 14: ACCESS CHAPTER 1 Tazin Afrin October 03,

Switch off your Mobiles Phones or Change Profile to Silent Mode.

Made by: Sambit Pulak XI-IB. Reliability refers to the operation of hardware, the design of software, the accuracy of data or the correspondence of data.

ALMIS Database Fundamentals. Topics ALMIS Database History Table Layout How to read a table definition Table constraints and Triggers Core Tables Table.

How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.

Discovering Computers Fundamentals Fifth Edition Chapter 9 Database Management.

Database Design and Management CPTG /23/2015Chapter 12 of 38 Functions of a Database Store data Store data School: student records, class schedules,

Chapter 1 Introduction to Databases. 1-2 Chapter Outline   Common uses of database systems   Meaning of basic terms   Database Applications  

Chapter No 4 Query optimization and Data Integrity & Security.

INFORMATION MANAGEMENT Unit 2 SO 4 Explain the advantages of using a database approach compared to using traditional file processing; Advantages including.

Database Security Outline.. Introduction Security requirement Reliability and Integrity Sensitive data Inference Multilevel databases Multilevel security.

Prepared By Prepared By : VINAY ALEXANDER ( विनय अलेक्सजेंड़र ) PGT(CS),KV JHAGRAKHAND.

Module 4: Configuring and Troubleshooting DHCP

REDCap Overview Institute for Clinical and Translational Science Fred McClurg Neil Nuehring.

CIS/SUSL1 Fundamentals of DBMS S.V. Priyan Head/Department of Computing & Information Systems.

Chapter 2 Securing Network Server and User Workstations.

Advanced Accounting Information Systems Day 10 answers Organizing and Manipulating Data September 16, 2009.

Experiment Management System CSE 423 Aaron Kloc Jordan Harstad Robert Sorensen Robert Trevino Nicolas Tjioe Status Report Presentation Industry Mentor:

Programming Logic and Design Fourth Edition, Comprehensive Chapter 16 Using Relational Databases.

ADVANTAGES OF DATA BASE MANAGEMENT SYSTEM. TO BE DICUSSED... Advantages of Database Management System  Controlling Data RedundancyControlling Data Redundancy.

Database Management Systems (DBMS)

Academic Year 2014 Spring Academic Year 2014 Spring.

Session 1 Module 1: Introduction to Data Integrity

Chapter 3 Requirements and Business Rules Copyright © 2012 Pearson Education, Inc. Publishing as Prentice HallChapter3.1.

Open source IP Address Management Software Review

IT Audit for non-IT auditors Cornell Dover Assistant Auditor General 31 March 2013.

Visibook is instant, simple, and dynamic appointment booking We're headquartered in San Francisco, California "Visibook is awesome. My entire studio was.

Data Integrity & Indexes / Session 1/ 1 of 37 Session 1 Module 1: Introduction to Data Integrity Module 2: Introduction to Indexes.

Getting started with Accurately Storing Data

Chapter 7. Identifying Assets and Activities to Be Protected

Unit 13 IT Systems Troubleshooting and Repair Anne Sewell

Records Retention NYS Magistrates’ Association

Unit 4 IT Security.

Database System Concepts and Architecture

Chapter 6 - Database Implementation and Use

Functions of a Database Management System

Microsoft Access 2003 Illustrated Complete

The System Catalog Describing the Data Copyright © Curt Hill

Database Management .

Unit 27: Network Operating Systems

Data Quality By Suparna Kansakar.

Teaching slides Chapter 8.

Chapter 1: The Database Environment

Administering Your Network

Microsoft Office Access 2003

Introduction of Week 11 Return assignment 9-1 Collect assignment 10-1

Unit 4 IT Security Kerris Davies.

AbbottLink™ - IP Address Overview

Designs for Data Integrity, validations, security and controls

NAVIGATING THE MINEFIELD

Ensuring the Quality and Best Use of Information

The Database Environment

Relational data model. Codd's Rule E.F Codd was a Computer Scientist who invented Relational model for Database management. Based on relational model,

European Computer Driving Licence Syllabus version 5.0

Presentation transcript:

Data Validation & Security

Providing Accurate Data Consistently Module 8 Data Validation & Security Providing Accurate Data Consistently Data validation allows us to provide data with confidence in its accuracy, and we can consistently provide this data by implementing thorough security.

Module 8 Data Validation & Security Data Integrity Validity, consistency, and accuracy of the data in a database. Table-level Field-level Relationship-level Business Rules

Data Validation The process of determining if an Module 8 Data Validation & Security Data Validation The process of determining if an update to a value in a table’s data cell is within a preestablished range or is a member of a set of allowable values.

What are some common data Module 8 Data Validation & Security What are some common data quality problems that affect data integrity and validation?

Common Data Quality Problems Module 8 Data Validation & Security Common Data Quality Problems Illegal values Violated attribute dependencies Uniqueness violation Referential integrity violation Missing values Misspellings Cryptic values Embedded values Misfielded values

Common Data Quality Problems continued…. Module 8 Data Validation & Security Common Data Quality Problems continued…. Word transpositions Duplicate records Contradicting records Wrong references Overlapping data/matching records Name conflicts Structural conflicts Inconsistencies

What are some methods for checking for data validity? Module 8 Data Validation & Security What are some methods for checking for data validity?

Methods for checking for data validity Module 8 Data Validation & Security Methods for checking for data validity Visual/manual Aggregation Reviewers guide Auto data checks Record counts Spell checks Have data provider review

Module 8 Data Validation & Security Time to Exercise!!

ALMIS Database Security Considerations Module 8 Data Validation & Security ALMIS Database Security Considerations The contact in my state is:______________ Physical security (including backup & restoration plan) Security Concerns: Confidentiality Integrity Availability Network (LAN/WAN) security Network permissions Web security Data Storage Access (Server or PC) Application security Application security RDBMS ODBC User level Production vs. test Production vs. test Suppression flags Data aggregation issues User level User level Database security prevents unauthorized person(s) from viewing, destroying or altering data within the database.

ALMIS Database Security Considerations Module 8 Data Validation & Security ALMIS Database Security Considerations The contact in my state is:______________ Physical security (including backup & restoration plan) Security Concerns: Confidentiality Integrity Availability Network (LAN/WAN) security Network permissions Web security Data Storage Access (Server or PC) Application security Application security RDBMS ODBC User level Production vs. test Production vs. test Suppression flags Data aggregation issues User level User level Database security prevents unauthorized person(s) from viewing, destroying or altering data within the database.

Physical Security Questions to ask yourself: Module 8 Data Validation & Security Physical Security Questions to ask yourself: Where is your data actually stored? Are you responsible for physical security? If you are...

Module 8 Data Validation & Security Physical Security What physical security measures do you have in place? Do you have the right hardware? Are you using obsolete hardware that is prone to crashing or hacking? Do you have a choice?

Physical Security Do you have a database backup plan? Module 8 Data Validation & Security Physical Security Do you have a database backup plan? Do you have remote backup so if a fire burns the building you don’t lose both your primary and backup data at the same time? Do you have a data restoration plan? Does the backup plan allow for feasible restoration?

Physical Security Restoration Plan Module 8 Data Validation & Security Physical Security Restoration Plan Does your restoration plan allow for the restoration of individual tables or require the entire database? Do you maintain copies of the tables on your hard drive?

Module 8 Data Validation & Security Physical Security Who has access to the physical storage location? Is your database on a PC or server that someone could easily kick, spill coffee on, or accidentally reappropriate? If you are not responsible for physical security, ask these questions of those who are!

ALMIS Database Security Considerations Module 8 Data Validation & Security ALMIS Database Security Considerations The contact in my state is:______________ Physical security (including backup & restoration plan) Security Concerns: Confidentiality Integrity Availability Network (LAN/WAN) security Network permissions Web security Data Storage Access (Server or PC) Application security Application security RDBMS ODBC User level Production vs. test Production vs. test Suppression flags Data aggregation issues User level User level Database security prevents unauthorized person(s) from viewing, destroying or altering data within the database.

Data Storage Access What software are you using to store the database? Module 8 Data Validation & Security Data Storage Access What software are you using to store the database? SQL Server, Oracle, FoxPro, Access? Survey says: SQL Server 48% Oracle 28% Other 24%

Module 8 Data Validation & Security Data Storage Access What can be done at the server level to provide for security? Confidentiality, Integrity, Availability DO apply advanced security to the most sensitive data, but DON’T apply advanced security to non-sensitive data

Data Storage Access Security at the server and/or database level… Module 8 Data Validation & Security Data Storage Access Security at the server and/or database level… Permissions What kind of permissions exist? Read only, SA, etc. Who sets those permissions? Who has those permissions?

ALMIS Database Security Module 8 Data Validation & Security ALMIS Database Security Security at the data level… Suppression Suppression flags Suppression can be handled at the database level or the application level

ALMIS Database Data Security Module 8 Data Validation & Security ALMIS Database Data Security Two approaches: 1. ALMIS Database contains NO confidential data (all data available for use without restriction) 2. ALMIS Database contains confidential data (data access controlled by security and/or suppression)

ALMIS Database Security Module 8 Data Validation & Security ALMIS Database Security Tables that have suppression flags... ces indprj industry iomatrix occprj oeswage stindprj stoccprj NOTE: tables stfirms and wage have no suppression flags but may contain confidential data

ALMIS Database Data Security Module 8 Data Validation & Security ALMIS Database Data Security Issues to consider regarding suppression: If your database doesn’t contain suppressed records, detailed data won’t aggregate to totals (validity checks?) Without proper suppression, confidential data can be back-calculated

ALMIS Database Data Security Module 8 Data Validation & Security ALMIS Database Data Security A note on confidential data: If you are checking 202 data (or any other potentially confidential data) to see that it loaded right, make sure your EQUI data files and/or printouts are always secured and shred all photocopies when finished. Check with your local BLS personnel or LMI administrator for specific confidentiality policies.

ALMIS Database Security Considerations Module 8 Data Validation & Security ALMIS Database Security Considerations The contact in my state is:______________ Physical security (including backup & restoration plan) Security Concerns: Confidentiality Integrity Availability Network (LAN/WAN) security Network permissions Web security Data Storage Access (Server or PC) Application security Application security RDBMS ODBC User level Production vs. test Production vs. test Suppression flags Data aggregation issues User level User level Database security prevents unauthorized person(s) from viewing, destroying or altering data within the database.

User Access Three major types of user access: Module 8 Data Validation & Security User Access Three major types of user access: PC - direct to database (ODBC or RDBMS) Network (LAN/WAN) through application Web (passive or active through application)

Module 8 Data Validation & Security User Access via the Web How do Web users access the data from the database? Passive (static tables automatically updated to web pages) Active (query through application)

User Access via the Web Questions to ask yourself: Module 8 Data Validation & Security User Access via the Web Questions to ask yourself: What kind of web server are you using? What are the security considerations with that choice? What kind of firewall do you have?

Module 8 Data Validation & Security User Access via the Web Does your web interface have security/confidentiality suppression? Do you display suppressed data to certain users? If so, how is access managed? Passwords? IP address?

User Access via a Network (LAN/WAN) Module 8 Data Validation & Security User Access via a Network (LAN/WAN) Questions to ask yourself: What type of network system do you have? Who has rights/access to your data via the network? Through what applications? Are confidential data (suppressed records) available?

User Access via a Network (LAN/WAN) Module 8 Data Validation & Security User Access via a Network (LAN/WAN) How do you control access to confidential data? Through user Ids? Through server access permissions? DO recognize the important distinction between network security and data security.

User Access via direct connection Module 8 Data Validation & Security User Access via direct connection Questions to ask yourself: Is local access machine password protected? Who has access to your machine? Is there a backup plan for your access machine? Is the source data for your database secure? Backup plan? Restorable?

ALMIS Database Data Security Module 8 Data Validation & Security ALMIS Database Data Security Documentation It may prove beneficial to keep detailed records on… How security is done Where security exists Who is responsible for security Who has access/permissions to what Etc...

Module 8 Data Validation & Security Data Security DISCUSSION