Presentation is loading. Please wait.

Presentation is loading. Please wait.

Database Security &Threats

Published byJules Piché Modified over 5 years ago

Similar presentations

Presentation on theme: "Database Security &Threats"— Presentation transcript:

1 Database Security &Threats

2 Database Data An essential corporate resource is a valuable resource
Must be strictly controlled, managed and secured May have strategic importance Should be kept secure and confidential

3 Threat A threat may be caused by a situation or event involving a person, action, or circumstance that is likely to bring harm to an organization. The harm may be tangible, such as loss of HW, SW or data, or intangible harm, such as loss of credibility or client confidence. Any threat must be viewed as a potential breach of security which, if successful, will have a certain impact. We consider database security in relation to the following situations, that broadly represent areas which the organization should seek to reduce risk.

4 Threat Theft and fraud Loss of confidentiality Loss of privacy
Effect the database environment and also the organization Loss of confidentiality Compromises the secrecy of critical organizational data Loss of privacy Lead to legal action being taken against the organization Loss of integrity Results in invalid or corrupt data, which may seriously affect the operation of an organization Loss of availability The data, system, or both cannot be accessed, which can seriously affect an organizations financial performance.

5 Threat The extent that an organization suffers as a result of a threat’s succeeding depends upon a number of factors, such as: The existence of countermeasures Contingency plans. For example When the last backups were taken The time needed to restore the system

6 Countermeasures Computer based security controls Authorization
The security of a DBMS is only as good as that of the operating system. Authorization Authentication, Privileges Ownership and privileges Each prilege has a binary value associated with it for example SELECT UPDATE INSERT DELETE ALL 0001 0010 0100 1000 1111 Access Control Matrix User/attr. property type price ownerNo staffNo Branch Row limit Sales 0001 0000 15 SG37 0101 0111 200 SG5 1111 none

7 Countermeasures Views Backup and recovery Integrity Encryption
A DBMS should provide backup facilities to assist with the recovery of a database following failure. The backup copy and the details captured in the log file are used to restore the database to the latest possible consistent state. Journaling Integrity Preventing data from becoming invalid Encryption

8 Countermeasures RAID technology Provides fault-tolerance
Disk drives are the most vulnerable components Solution? Use RAID Data striping Increases performance by segmenting data into equal-size partitions, which are transparently distributed across multiple disks. Improves overall I/O performance by allowing multiple I/Os to be serviced in parallel. Provides Reliability Parity scheme error-correcting scheme

9 Countermeasures RAID levels RAID 0 RAID 1 RAID 0+1 RAID 5 Nonredundant
Mirrored RAID 0+1 Nonredundant and Mirrored RAID 5 Uses parity data for redundancy

10 DBMS Functions and Services
Authorization: DBMS must ensure that only authorized users can access the database Secure the database against unauthorized access (intentional or accidental) Database security: The mechanisms that protect the database against intentional or accidental threats Security considerations apply not only to the data, considerations apply to other parts as well, which may in turn affect the database. E.g. Hardware Software People

11 DBMS Function and Services
Three closely related functions of the DBMS that ensure reliability and consistency. The reliability and consistency must be maintained in the presence of failure of both hardware and software components and when multiple users are accessing the database. Transaction support A logical unit of work on the database Concurrency control services Controls simultaneous operations on the database Recovery services The process of restoring the database to a correct state

Download ppt "Database Security &Threats"

Similar presentations

Information System Audit : © South-Asian Management Technologies Foundation Chapter 4: Information System Audit Requirements.

Information System Audit : © South-Asian Management Technologies Foundation Chapter 4: Information System Audit Requirements.
Database Management System MIS 520 – Database Theory Fall 2001 (Day) Lecture 13.

Database Management System MIS 520 – Database Theory Fall 2001 (Day) Lecture 13.
Database Administration and Security Transparencies 1.

Database Administration and Security Transparencies 1.
REDUNDANT ARRAY OF INEXPENSIVE DISCS RAID. What is RAID ? RAID is an acronym for Redundant Array of Independent Drives (or Disks), also known as Redundant.

REDUNDANT ARRAY OF INEXPENSIVE DISCS RAID. What is RAID ? RAID is an acronym for Redundant Array of Independent Drives (or Disks), also known as Redundant.
Security Dale-Marie Wilson, Ph.D.. Why Database Security? Data Valuable resource Must be strictly controlled and managed Corporate resource Have strategic.

Security Dale-Marie Wilson, Ph.D.. Why Database Security? Data Valuable resource Must be strictly controlled and managed Corporate resource Have strategic.
Database Integrity, Security and Recovery Database integrity Database integrity Database security Database security Database recovery Database recovery.

Database Integrity, Security and Recovery Database integrity Database integrity Database security Database security Database recovery Database recovery.
1 Minggu 7, Pertemuan 13 Security Matakuliah: T0206-Sistem Basisdata Tahun: 2005 Versi: 1.0/0.0.

1 Minggu 7, Pertemuan 13 Security Matakuliah: T0206-Sistem Basisdata Tahun: 2005 Versi: 1.0/0.0.
Manajemen Basis Data Pertemuan 1 Matakuliah: M0264/Manajemen Basis Data Tahun: 2008.

Manajemen Basis Data Pertemuan 1 Matakuliah: M0264/Manajemen Basis Data Tahun: 2008.
Chapter 8 Security Transparencies © Pearson Education Limited 1995, 2005.

Chapter 8 Security Transparencies © Pearson Education Limited 1995, 2005.
IS 4420 Database Fundamentals Chapter 12: Data and Database Administration Leon Chen.

IS 4420 Database Fundamentals Chapter 12: Data and Database Administration Leon Chen.
Chapter 16 Security. 2 Chapter 16 - Objectives u The scope of database security. u Why database security is a serious concern for an organization. u The.

Chapter 16 Security. 2 Chapter 16 - Objectives u The scope of database security. u Why database security is a serious concern for an organization. u The.
I/O Systems and Storage Systems May 22, 2000 Instructor: Gary Kimura.

I/O Systems and Storage Systems May 22, 2000 Instructor: Gary Kimura.
Saving Your Business from a Data Loss Randy Clark.

Saving Your Business from a Data Loss Randy Clark.
Chapter 19 Security Transparencies © Pearson Education Limited 1995, 2005.

Chapter 19 Security Transparencies © Pearson Education Limited 1995, 2005.
Security Architecture Dr. Gabriel. Security Database security: –degree to which data is fully protected from tampering or unauthorized acts –Full understanding.

Security Architecture Dr. Gabriel. Security Database security: –degree to which data is fully protected from tampering or unauthorized acts –Full understanding.
DATABASE SECURITY By Oscar Suciadi CS 157B Prof. Sin-Min Lee.

DATABASE SECURITY By Oscar Suciadi CS 157B Prof. Sin-Min Lee.
DATABASE ADMINISTRATION AND SECURITY

DATABASE ADMINISTRATION AND SECURITY
Chapter 19 Security Transparencies. 2 Chapter 19 - Objectives Scope of database security. Why database security is a serious concern for an organization.

Chapter 19 Security Transparencies. 2 Chapter 19 - Objectives Scope of database security. Why database security is a serious concern for an organization.
II.I Selected Database Issues: 1 - SecuritySlide 1/24 II. Selected Database Issues Part 1: Security Lecture 1 Lecturer: Chris Clack 3C13/D6.

II.I Selected Database Issues: 1 - SecuritySlide 1/24 II. Selected Database Issues Part 1: Security Lecture 1 Lecturer: Chris Clack 3C13/D6.
ISA 562 1 Topic 9: Operations Security ISA 562 Internet Security Theory & Practice.

ISA Topic 9: Operations Security ISA 562 Internet Security Theory & Practice.

Similar presentations

Ads by Google