Presentation is loading. Please wait.

Presentation is loading. Please wait.

SECURING SQL AZURE DATABASE? Boris Hristov SQLSaturday #413 Copenhagen.

Published byAgnes McDonald Modified over 8 years ago

Similar presentations

Presentation on theme: "SECURING SQL AZURE DATABASE? Boris Hristov SQLSaturday #413 Copenhagen."— Presentation transcript:

1 SECURING SQL AZURE DATABASE? Boris Hristov SQLSaturday #413 Copenhagen

2 Say thank you to our Sponsors :

3 All our volunteers and organisers do not get paid for organizing this event – If you see them, please: ◦ Give them a hug ◦ Shake their hand ◦ Say thank you ◦ Spread the word ◦ Get involved yourself Don’t forget to thank the sponsors for their support Thank the speakers for donating their time, energy and expenses Stick around for RAFFLE and the AFTER EVENT!

4 That’s not a marketing talk! DISCLAIMER:

5 So who’s Boris? @BorisHristov

6 time Session’s Timeline Dynamic Data Masking Row Level Security coolness

7 Dynamic Data Masking

8 “Have you ever…”

9 SELECT * FROM dbo.Customers custidFirstNameLastNamePhoneNumberEmailAddressCreditcardNumber 1 Boris Hristov +359889000000 brshristov@live.com 1111-1111-1111-1111 2 Ivan Donev +359889000000 idonev@live.com 2222-2222-2222-2222 3 Stanislav Zhelyaskov +359889000000 szhelyaskov@live.com 3333-3333-3333-3333 4 Ivan Minchev +359889000000 iminchev@live.com 4444-4444-4444-4444

10 custidFirstNameLastNamePhoneNumberEmailAddressCreditcardNumber 1 Boris Hristov +359889000000 bxx@xxxx.com xxxx-xxxx-xxxx-1111 2 Ivan Donev +359889000000 ixxx@xxxx.com xxxx-xxxx-xxxx-2222 3 Stanislav Zhelyaskov +359889000000 sxx@xxxx.com xxxx-xxxx-xxxx-3333 4 Ivan Minchev +359889000000 ixx@live.com xxxx-xxxx-xxxx-4444 SELECT * FROM dbo.Customers

11 Dynamic Data Masking

12 DEMO Dynamic Data Masking

13 Row Level Security

14 “Have you ever…”

15 orderidcustidorderdateshipdateshipcountry 1 1 4/20/2015 20:15:49 Bulgaria 2 1 4/20/2015 20:15:49 Germany 3 2 4/20/2015 20:15:49 Germany 4 2 4/20/2015 20:15:49 Bulgaria 5 3 4/20/2015 20:15:49 Bulgaria SELECT * FROM dbo.Orders

16 orderidcustidorderdateshipdateshipcountry 1 1 4/20/2015 20:15:49 Bulgaria 4 2 4/20/2015 20:15:49 Bulgaria 5 3 4/20/2015 20:15:49 Bulgaria SELECT * FROM dbo.Orders

17 How is that possible?

18 -- user defined function CREATE FUNCTION Security.fn_securitypredicate (@SalesRep AS sysname) RETURNS TABLE WITH SCHEMABINDING AS RETURN SELECT 1 AS fn_securitypredicate_result WHERE @SalesRep = USER_NAME() OR USER_NAME() = 'Manager'; -- security policy CREATE SECURITY POLICY SalesFilter ADD FILTER PREDICATE Security.fn_securitypredicate(SalesRep) ON dbo.Sales WITH (STATE = ON); No GUI, folks

19 DEMO Row Level Security

20 Cool, huh?

21 Not that fast…

22 time Session’s Timeline Dynamic Data Masking Row Level Security coolness

23 DEMO Row Level Security Issues

24 So is that a security feature then?

25 Or is that a programmability feature?

26 Take away RLS is great. Just be aware of the current issues! Easily mask sensitive data with Dynamic Data Masking A lot’s going on in SQL Azure DB…

27 Thank you! Contacts: brshristov@live.com www.borishristov.com @BorisHristov

Download ppt "SECURING SQL AZURE DATABASE? Boris Hristov SQLSaturday #413 Copenhagen."

Similar presentations

Understanding SQL Azure Name Title Microsoft Corporation.

Understanding SQL Azure Name Title Microsoft Corporation.
Overview and Roadmap for Microsoft SQL Server Security

Overview and Roadmap for Microsoft SQL Server Security
ORACLE DATABASE SECURITY

ORACLE DATABASE SECURITY
DB Audit Expert v1.1 for Oracle Copyright © 1999-2002 SoftTree Technologies, Inc. This presentation is for DB Audit Expert for Oracle version 1.1 which.

DB Audit Expert v1.1 for Oracle Copyright © SoftTree Technologies, Inc. This presentation is for DB Audit Expert for Oracle version 1.1 which.
2013 Jingle Bell Walk/Run The 2013 Jingle Bell Run Sponsored by the Arthritis Foundation is looking for a Hot Chocolate sponsor to donate 1,500 cups of.

2013 Jingle Bell Walk/Run The 2013 Jingle Bell Run Sponsored by the Arthritis Foundation is looking for a Hot Chocolate sponsor to donate 1,500 cups of.
SQLintersection Session: Tuesday, 12:00-1:00pm NEW SECURITY FEATURES IN SQL SERVER 2016 & AZURE SQL DB Aaron Bertrand

SQLintersection Session: Tuesday, 12:00-1:00pm NEW SECURITY FEATURES IN SQL SERVER 2016 & AZURE SQL DB Aaron Bertrand
#SQLSAT454 SQL Server 2016 New Security Features Gianluca

#SQLSAT454 SQL Server 2016 New Security Features Gianluca
How to create a Windows app with Project Siena, SharePoint and Office 365 Knut Relbe-Moe Office 365 MVP Chief Technical Architect.

How to create a Windows app with Project Siena, SharePoint and Office 365 Knut Relbe-Moe Office 365 MVP Chief Technical Architect.
Overview of Security Investments in SQL Server 2016 and Azure SQL Database Jamey Johnston 1/15/2016Security Investments in SQL Server 2016 and Azure SQL.

Overview of Security Investments in SQL Server 2016 and Azure SQL Database Jamey Johnston 1/15/2016Security Investments in SQL Server 2016 and Azure SQL.
Securing Data on your Terms Kristina Rumpff SQL Saturday #464, Melbourne 20 th February 2016.

Securing Data on your Terms Kristina Rumpff SQL Saturday #464, Melbourne 20 th February 2016.
Configure on-premises SharePoint environment for App/Add-in Koncern-it Dias 1.

Configure on-premises SharePoint environment for App/Add-in Koncern-it Dias 1.
Putting Your Head in the Cloud Working with SQL Azure David Postlethwaite 19/09/2015David Postlethwaite.

Putting Your Head in the Cloud Working with SQL Azure David Postlethwaite 19/09/2015David Postlethwaite.
Using Power BI with my DBA Database

Using Power BI with my DBA Database
Risk Assessment AFFORDABLE SOLUTION USING E XCEL AND P OWER BI.

Risk Assessment AFFORDABLE SOLUTION USING E XCEL AND P OWER BI.
SQL Server High Availability Introduction to SQL Server high availability solutions.

SQL Server High Availability Introduction to SQL Server high availability solutions.
INTRODUCTION TO MDX. Stick around for RAFFLE and the AFTER EVENT!  All our volunteers and organisers do not get paid for organizing this event – If.

INTRODUCTION TO MDX. Stick around for RAFFLE and the AFTER EVENT!  All our volunteers and organisers do not get paid for organizing this event – If.
SQL Server 2016 Security Features Marek Chmel Microsoft MVP: Data Platform Microsoft MCT: Regional Lead MCSE: Data Platform Certified Ethical Hacker.

SQL Server 2016 Security Features Marek Chmel Microsoft MVP: Data Platform Microsoft MCT: Regional Lead MCSE: Data Platform Certified Ethical Hacker.
Shadow prediction: SQL 2014 spatial data types and astronomy well mixed.

Shadow prediction: SQL 2014 spatial data types and astronomy well mixed.
Session Name Pelin ATICI SQL Premier Field Engineer.

Session Name Pelin ATICI SQL Premier Field Engineer.
Polyglot persistence with Azure data storage services. SQL Database, Azure Table Storage and Document DB June 18, 2016.

Polyglot persistence with Azure data storage services. SQL Database, Azure Table Storage and Document DB June 18, 2016.

Similar presentations

Ads by Google