Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 6 – Database Security  Integrity for databases: record integrity, data correctness, update integrity  Security for databases: access control,

Published byElfrieda Shields Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 6 – Database Security  Integrity for databases: record integrity, data correctness, update integrity  Security for databases: access control,"— Presentation transcript:

1

2 Chapter 6 – Database Security  Integrity for databases: record integrity, data correctness, update integrity  Security for databases: access control, inference, and aggregation  Multilevel secure databases: partitioned, cryptographically sealed, filtered

3 Introduction to Databases  Database – collection of data and set of rules that organize the data by specifying certain relationships among the data  Database administrator (DBA)  Database management system (DBMS) – database manager, front- end

4 Introduction to Databases  Records – contain related group of data  Fields (elements) – elementary data items  Schema – logical structure of database  Subschema – view into database

5 Introduction to Databases  Relational Rows (relation); columns (attributes)Rows (relation); columns (attributes) DB2, Oracle, AccessDB2, Oracle, Access  Hierarchical IMSIMS  Object-oriented

6 Introduction to Databases  Queries SELECT NAME = ‘ADAMS’SELECT NAME = ‘ADAMS’ SELECT (ZIP = ‘43210’) ^ (NAME = ‘ADAMS’)SELECT (ZIP = ‘43210’) ^ (NAME = ‘ADAMS’)  Project SHOW FIRST WHERE (ZIP = ‘43210’) ^ (NAME = ‘ADAMS’)SHOW FIRST WHERE (ZIP = ‘43210’) ^ (NAME = ‘ADAMS’)  Join SHOW NAME, AIRPORT WHERESHOW NAME, AIRPORT WHERE NAME.ZIP = AIRPORT.ZIP

7 Advantages of Using Databases  Shared access  Minimal redundancy  Data consistency  Data integrity  Controlled access

8 Security Requirements  Physical database integrity  Logical database integrity  Element integrity  Auditability  Access control  User authentication  Availability

9 Integrity of the Database  Users must be able to trust the accuracy of the data values  Updates are performed by authorized individuals  Integrity is the responsibility of the DBMS, the OS, and the computing system manager  Must be able to reconstruct the database at the point of a failure

10 Element Integrity  Correctness or accuracy of elements  Field checks  Access control  Maintain a change log – list every change made to the database

11 Auditability & Access Control  Desirable to generate an audit record of all access to the database (reads/writes)  Pass-through problem – accessing a record or element without transferring the data received to the user (no reads/writes)  Databases separated logically by user access privileges

12 Other Security Requirements  User Authentication  Integrity  Confidentiality  Availability

13 Reliability and Integrity  Database integrity  Element integrity  Element accuracy  Some protection from OS File accessFile access Data integrity checksData integrity checks

14 Two-Phase Update  Failure of computing system in middle of modifying data  Intent Phase – gather resources needed for update; write commit flag to the database  Update Phase – make permanent changes

15 Redundancy / Internal Consistency  Error detection / Correction codes (parity bits, Hamming codes, CRCs)  Shadow fields  Log of user accesses and changes

16 Concurrency/Consistency  Access by two users sharing the same database must be constrained (lock)  Monitors –check entered values to ensure consistency with rest of DB  Range Comparisons  State Constraints – describes condition of database (unique employee #)  Transition Constraints – conditions before changes are applied to DB

Download ppt "Chapter 6 – Database Security  Integrity for databases: record integrity, data correctness, update integrity  Security for databases: access control,"

Similar presentations

Data Modeling and Database Design Chapter 1: Database Systems: Architecture and Components.

Data Modeling and Database Design Chapter 1: Database Systems: Architecture and Components.
PowerPoint Presentation by Charlie Cook Copyright © 2004 South-Western. All rights reserved. Chapter 3 Database Management Systems Database Management.

PowerPoint Presentation by Charlie Cook Copyright © 2004 South-Western. All rights reserved. Chapter 3 Database Management Systems Database Management.
Introduction to Database Management  Department of Computer Science Northern Illinois University January 2001.

Introduction to Database Management  Department of Computer Science Northern Illinois University January 2001.
Information Security Principles & Applications

Information Security Principles & Applications
Your Interactive Guide to the Digital World Discovering Computers 2012 Chapter 10 Managing a Database.

Your Interactive Guide to the Digital World Discovering Computers 2012 Chapter 10 Managing a Database.
Database Management: Getting Data Together Chapter 14.

Database Management: Getting Data Together Chapter 14.
Security in Databases. 2 Srini & Nandita (CSE2500)DB Security Outline review of databases reliability & integrity protection of sensitive data protection.

Security in Databases. 2 Srini & Nandita (CSE2500)DB Security Outline review of databases reliability & integrity protection of sensitive data protection.
Living in a Digital World Discovering Computers 2010.

Living in a Digital World Discovering Computers 2010.
Introduction to Databases Transparencies

Introduction to Databases Transparencies
Security in Databases. 2 Outline review of databases reliability & integrity protection of sensitive data protection against inference multi-level security.

Security in Databases. 2 Outline review of databases reliability & integrity protection of sensitive data protection against inference multi-level security.
Business Driven Technology Unit 2 Exploring Business Intelligence Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution.

Business Driven Technology Unit 2 Exploring Business Intelligence Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution.
Chapter 4 Relational Databases Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 4-1.

Chapter 4 Relational Databases Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 4-1.
Mgt 20600: IT Management & Applications Databases Tuesday April 4, 2006.

Mgt 20600: IT Management & Applications Databases Tuesday April 4, 2006.
Managing Data Resources. File Organization Terms and Concepts Bit: Smallest unit of data; binary digit (0,1) Byte: Group of bits that represents a single.

Managing Data Resources. File Organization Terms and Concepts Bit: Smallest unit of data; binary digit (0,1) Byte: Group of bits that represents a single.
Chapter 4 Relational Databases Copyright © 2012 Pearson Education 4-1.

Chapter 4 Relational Databases Copyright © 2012 Pearson Education 4-1.
SE571 Security in Computing

SE571 Security in Computing
Chapter 9 Database Management

Chapter 9 Database Management
IT 221: Introduction to Information Security Principles Lecture 11: Database Security For Educational Purposes Only Revised: November 13, 2002.

IT 221: Introduction to Information Security Principles Lecture 11: Database Security For Educational Purposes Only Revised: November 13, 2002.
1 Intro to Info Tech Database Management Systems Copyright 2003 by Janson Industries This presentation can be viewed on line at:

1 Intro to Info Tech Database Management Systems Copyright 2003 by Janson Industries This presentation can be viewed on line at:
CS370 Spring 2007 CS 370 Database Systems Lecture 2 Overview of Database Systems.

CS370 Spring 2007 CS 370 Database Systems Lecture 2 Overview of Database Systems.

Similar presentations

Ads by Google