Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jean T. Anderson jta@bristowhill.com Apache Derby Security Jean T. Anderson jta@bristowhill.com.

Published byAngelina Miles Modified over 9 years ago

Similar presentations

Presentation on theme: "Jean T. Anderson jta@bristowhill.com Apache Derby Security Jean T. Anderson jta@bristowhill.com."— Presentation transcript:

1 Jean T. Anderson jta@bristowhill.com
Apache Derby Security Jean T. Anderson

2 Agenda Apache Derby in a Nut Shell User Authentication
User Authorization Database Encryption Java 2 Security Manager

3 Apache Derby in a Nutshell
Complete relational database Implemented in Java Standards based (SQL, Java, JDBC) Small enough to invisibly embed in an application Easy to deploy, use, manage Secure Fully Embeddable or Server-based DBA So just what is cloudscape? Point out our acquisition of cloudscape and our initial focus of using cloudscape in over 90 IBM projects, and our focus/experience in componentization led us to understand the values of an embedded database technology…. Then talk about the key features of cloudscape: Embeddable in the client app or server-based Small (2mb) foot print Pure java (the db is java classes that are embedded in the app) All functions are programmable, eliminating the need for any dba. Rich function for such a small db (sql 92). That means the app could easily be scaled to any enterprise db, e.g. DB2 Note: The initial code base from which to create this project is from the commercial product called IBM Cloudscape. The history of this product is that it was developed at Cloudscape Inc. starting in The Cloudscape product was purchased along with the Cloudscape company by Informix Software in In 2001, IBM purchased the database assets of Informix Software, including the Cloudscape product. SQL

4 Apache Derby in a Nutshell
Apache DB Subproject Web site: Mail Lists: Wiki:

5 Where Derby Databases Run
Typical: Servers Workstations Notebooks Laptops PDAs Kiosks CD ROMs inboxes Not typical: Locked machine room Highly secured server Behind a locked door

6 Apache Derby Security Strategy
User authentication Restricts access to database(s) User authorization Restricts access to database objects Database Encryption Protects physical files Java 2 Security Manager Takes advantage of Java features Documentation: Developer’s Guide

7 User authentication Restricts access to database(s)
Based on a user id and password JDBC user and password attributes in connection URL or properties object User and Password parameters in DriverManager.getConnection() methods User and Password properties in DataSource

8 User authentication: URL syntax
Embedded: ij> connect 'jdbc:derby:DbTest;user=app;password=derby'; Derby Network Client: 'jdbc:derby://localhost:1527/DbTest;user=app;password=derby'; IBM DB2 Universal JDBC Driver: 'jdbc:derby:net://localhost:1527/DbTest:user=app;password=derby;';

9 User authentication Four types Granularity NONE (default) LDAP
BUILTIN (will demo) Application-defined Granularity Per database (set as database properties) For the system (derby.properties file)

10 User authentication: NONE
No user name required to connect Defaults to APP (default schema is also APP) No password required to connect If user and password are supplied… Schema defaults to user Schema doesn’t need to exist Password is ignored Client JDBC drivers require user/password

11 User authentication: LDAP
Properties derby.connection.requireAuthentication=true derby.authentication.provider=LDAP derby.authentication.server=ldap_server:389 plus optional properties Caveats Derby does not cache LDAP entries Derby does not support LDAP groups

12 User authentication: App-defined
Properties derby.connection.requireAuthentication=true derby.authentication.provider=java_class_name Java class implements org.apache.derby.authentication.UserAuthenticator authenticateUser() method Takes connection info Returns True: user successfully authenticated False: user failed authentication

13 User authentication: BUILTIN
Properties (a common mistake is to forget these) derby.connection.requireAuthentication=true derby.authentication.provider=BUILTIN User-defined using properties derby.user.name=password System-level: add to derby.properties file derby.user.foo=bar Database-level: CALL SYSCS_UTIL.SYSCS_SET_DATABASE_PROPERTY( 'derby.user.foo', ‘bar')

14 User authentication: Demo
Live demo of BUILTIN authentication

15 User authentication to authorization id
Case sensitive (likely) ij> connect 'jdbc:derby:DbTest;user=Mickey;password=Mouse'; Database user authorization id Case insensitive: MICKEY Unless quoted: 'jdbc:derby:DbTest;user=“Mickey”;password=Mouse';

16 User authorization Restricts access to database objects Three options
fullAccess: Read & modify data (default) readOnlyAccess: Read-only noAccess: Cannot connect Granularity Per database (set as database properties) For the system (derby.properties file) Coming: Grant/Revoke (DERBY-464)

17 User authorization Properties Examples
derby.database.defaultConnectionMode fullAccess, readOnlyAccess, noAccess derby.database.fullAccessUsers derby.database.readOnlyAccessUsers Examples CALL SYSCS_UTIL.SYSCS_SET_DATABASE_PROPERTY( 'derby.database.defaultConnectionMode', ‘noAccess') CALL SYSCS_UTIL.SYSCS_SET_DATABASE_PROPERTY( 'derby.database.readOnlyAccessUsers', 'mary,guest') CALL SYSCS_UTIL.SYSCS_SET_DATABASE_PROPERTY( 'derby.database.fullAccessUsers', 'sa')

18 User authorization Live demo

19 Database encryption Protects physical files
Complete encryption of on-disk data Indexes and tables Transaction log file Temporary files (for ORDER BY, etc.) Includes application and system data Table data System catalog/metadata information

20 Database encryption Not Encrypted: Data in-memory service.properties
Page cache contents ResultSets service.properties Contains minimal info to boot database Can contain some encryption-related info Jar files stored via sqlj.install_jar derby.log error log

21 Database encryption I/O Based Encryption
Data encrypted just before write call to disk Data decrypted immediately after read from disk Most of the system is unaware

22 Database encryption Derby provides the pluggable framework You provide
Java Cryptographic Extension (JCE) or higher Optional in J2SE 1.3 Included in J2SE 1.4 Encryption provider Sun and IBM JVMs include a provider Can use third party provider Sun site lists five provider implementations

23 Database encryption: Database Create
Database configured for encryption at create Remains encrypted with same key forever Two modes Database key store (default) Derby generates encryption key Encryption key stored in service.properties file External key store Application provides encryption key App uses external key store, such as a smart card

24 Database encryption: Database Create
Connection URL attributes dataEncryption=true bootPassword=value Default encryption provider JRE determines default Can specify alternate with encryptionProvider Default encryption algorithm DES Can specify alternate with encryptionAlgorithm

25 Database encryption: Booting
First connection must provide the boot password (database key store) or encryption key (external key store) Once database is booted … Subsequent connection requests can be made without boot password/encryption key Connection requests are subject to authentication and authorization Database remains booted after first connection disconnects

26 Database encryption: DES Example
DES Key Length = 56 bits Boot password length >= key length 8 character minimum required by Derby ij> connect ‘jdbc:derby:DbTest;create=true;dataEncryption=true;bootPassword=aPach31sMyL1f3’; Encryption entries in service.properties: dataEncryption=true encryptionAlgorithm=DES/CBC/NoPadding derby.encryptionBlockSize=8 encryptionKeyLength=56-8 encryptedBootPassword=a7922fc4eabaddf

27 Database encryption: DES Example
Live demo

28 Java 2 Security Manager Derby supports environments that enable Java 2 Security Manager Requires granting specific Java permissions to the Derby code (next slide) Derby requires only the minimum permissions needed to perform its intended function as a database engine

29 Java 2 Security Manager Derby Security Permissions (derby.jar)
Create class loaders – SQL queries are compiled to byte code and loaded by an internal class loader [Required] Read/write permissions for data files [Required] Read derby.* system properties Read permission on derby.properties Read/write permission on derby.log Install JCE provider

30 Java 2 Security Manager: SQL Routines
SQL Functions and Procedures must Execute controlled actions using privileged blocks Have permission for action granted to their code base (jar file) Currently not possible for jar files stored in db The generated class that executes the SQL statement from which they are called has no permissions and will be in the calling stack of the routine So, this procedure fails with a security exception: CREATE PROCEDURE SHUT_REMOTE_SYSTEM (e int) … CALL SHUT_REMOTE_SYSTEM(-1);

31 Java 2 Security Manager: Example
Grants permission to run Derby and access all databases under the Derby system home grant codeBase "file:c:/db-derby bin/lib/derby.jar" { permission java.lang.RuntimePermission "createClassLoader"; permission java.util.PropertyPermission "derby.*", "read"; permission java.io.FilePermission "${derby.system.home}", "read"; permission java.io.FilePermission "${derby.system.home}${/}-","read,write,delete"; }; Using the policy with a Java application: java -Djava.security.manager -Djava.security.policy=full_path -Dderby.system.home=full_path JavaApp

32 Java 2 Security Manager Live demo

33 Java 2 Security Manager More Information: Derby Developer’s Guide

34 Questions? Apache Derby in a Nut Shell User Authentication
User Authorization Java 2 Security Manager Database Encryption

Download ppt "Jean T. Anderson jta@bristowhill.com Apache Derby Security Jean T. Anderson jta@bristowhill.com."

Similar presentations

1.  Understanding about How to Working with Server Side Scripting using PHP Framework (CodeIgniter) 2.

1.  Understanding about How to Working with Server Side Scripting using PHP Framework (CodeIgniter) 2.
Advantage Data Dictionary. agenda Creating and Managing Data Dictionaries –Tables, Indexes, Fields, and Triggers –Defining Referential Integrity –Defining.

Advantage Data Dictionary. agenda Creating and Managing Data Dictionaries –Tables, Indexes, Fields, and Triggers –Defining Referential Integrity –Defining.
LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.

LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.
Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.

Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.
Distributed Application Development B. Ramamurthy.

Distributed Application Development B. Ramamurthy.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 12: Managing and Implementing Backups and Disaster Recovery.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 12: Managing and Implementing Backups and Disaster Recovery.
DT228/3 Web Development Databases. Database Almost all web application on the net access a database e.g. shopping sites, message boards, search engines.

DT228/3 Web Development Databases. Database Almost all web application on the net access a database e.g. shopping sites, message boards, search engines.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
Advanced Databases Basic Database Administration Guide to Oracle 10g 1.

Advanced Databases Basic Database Administration Guide to Oracle 10g 1.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
ORACLE DATABASE SECURITY

ORACLE DATABASE SECURITY
Virtual techdays INDIA │ 18-20 august 2010 Building ASP.NET applications using SQL Server Compact Chaitanya Solapurkar │ Partner Technical Consultant,

Virtual techdays INDIA │ august 2010 Building ASP.NET applications using SQL Server Compact Chaitanya Solapurkar │ Partner Technical Consultant,
Page 1 Sandboxing & Signed Software Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.

Page 1 Sandboxing & Signed Software Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
Module 1: Installing Active Directory Domain Services

Module 1: Installing Active Directory Domain Services
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd
Database Application Security Models

Database Application Security Models
Advance Computer Programming Java Database Connectivity (JDBC) – In order to connect a Java application to a database, you need to use a JDBC driver. –

Advance Computer Programming Java Database Connectivity (JDBC) – In order to connect a Java application to a database, you need to use a JDBC driver. –
Getting connected.  Java application calls the JDBC library.  JDBC loads a driver which talks to the database.  We can change database engines without.

Getting connected.  Java application calls the JDBC library.  JDBC loads a driver which talks to the database.  We can change database engines without.

Similar presentations

Ads by Google