Presentation is loading. Please wait.

Presentation is loading. Please wait.

Pertemuan Ke 7 Agung BP. Pembahasan Integrity for databases: record integrity, data correctness, update integrity Security for databases: access control,

Published byHarry Hubbard Modified over 8 years ago

Similar presentations

Presentation on theme: "Pertemuan Ke 7 Agung BP. Pembahasan Integrity for databases: record integrity, data correctness, update integrity Security for databases: access control,"— Presentation transcript:

1 Pertemuan Ke 7 Agung BP

2 Pembahasan Integrity for databases: record integrity, data correctness, update integrity Security for databases: access control, inference, and aggregation Multilevel secure databases: partitioned, cryptographically sealed,filtd filtered Security in data mining applications

3 PUSTAKA Charles P. Pfleeger & Shari Lawrence Pfleeger, Security in Computing, 4 th Ed., Pearson Education, 2007 Chapter 6

4 Konsep Database Database adalah kumpulan data dan seperangkat aturan yang mengatur tentang data dengan menetapkan hubungan tertentu antara data. User/pengguna menggambarkannya data berupa logical format. Physical Format tidak selalu mendapatkan perhatian secara serius oleh pengguna/user.

5 Logical Format Database

6 Physical Format

7 DBA (Database Administrator) adalah seseorang yang memberikan aturan kepada pengguna untuk mengelola, mengatur dan memantau data di database. Contoh Sintak memberi Grant User di Oracle: create user alfredo identified by alfredos_secret; create user alfredo identified externally; create user alfredo identified globally as 'external_name';

8 Lanjt. create user alfredo identified by alfredos_secret default tablespace ts_users temporary tablespace ts_temp; Atau create user alfredo identified by passw0rd account lock; grant connect to alfredo; grant

9 grant system_privilege to username;system_privilege grant system_privilege_1, system_privileges_2,..,system_privileges_n to username;system_privilege_1 grant system_privilege_1 to username with admin option;system_privilege_1with admin option grant object_privilege to username;object_privilege grant object_privilege to username with grant option;object_privilege grant object_privilege to username with hierarchy option;object_privilege hierarchy option

10 The user interacts with the database through a program called a database manager or a database management system (DBMS), informally known as a front end

11 Komponen Record – contain one related group of data Each record contains fields or elements. The logical structure of a database is called a schema A particular user may have access to only part of the database, ini disebut dengan Subschema

12

13

14 The name of each column is called an attribute of the database A relation is a set of columns.

15 Users interact with database managers through commands to the DBMS that retrieve, modify, add, or delete fields and records of the database. Command is called query.

16 Other, more complex, selection criteria are possible, with logical operators such as and ( ∧ ) and or ( ∨ ), and comparisons such as less (<)

17 Advantage of Using Databases vs file

18 A database is a single collection of data, stored and maintained at one central location, to which many people may have access as needed. The users are unaware of the physical arrangements; the unified logical arrangement is all they see.

19 With a database we can....

20 Shared access – users use one common, centralized set of data Minimal redundancy. users do not have to collect and maintain their own sets of data Data consistency. change to a data value affects all users of the data value. Data integrity. data values are protected against accidental or malicious undesirable changes Controlled access. only authorized users are allowed to view or to modify data values

21 Security Requirements Physical database integrity. Logical database integrity. Element integrity. Auditability. Access control. User authentication. Availability.

22 Integrity of the Database Two situations can affect the integrity of a database: when the whole database is damaged or corrupt. when individual data items are unreadable.

23 Integrity of the database as a whole is the responsibility of : The DBMS The operating system The (human) computing system manager.

24 Proposals for Multilevel Security Separation ◦Partitioning ◦Encryption ◦Integrity Lock

25 Trusted Front End A user identifies himself or herself to the front end; the front end authenticates the user's identity. The user issues a query to the front end. The front end verifies the user's authorization to data The front end issues a query to the database manager

26 The database manager performs I/O access, interacting with low level access control to achieve access to actual data. The database manager returns the result of the query to the trusted front end. The front end analyzes the sensitivity levels of the data items in the result and selects those items consistent with the user's security level.

27 The front end transmits selected data to the untrusted front end formatting. The untrusted front end transmits formatted data to the user.

28 Summary of Database Security

29 Address three aspects of security for database management systems: Masalah keutuhan dan kerahasiaan database secara spesifik ◦Kerahasiaan tanggung jawab dari user. ◦Keutuhan seluruh database dan table tanggung jawab dari DBMS dan DBA.

30 Permasalahan Data di database. Permasalahan bisa terletak pada user dan tingkat sensitivitas data pada tiap-tiap database atau bahkan tiap-tiap table.

Download ppt "Pertemuan Ke 7 Agung BP. Pembahasan Integrity for databases: record integrity, data correctness, update integrity Security for databases: access control,"

Similar presentations

Relational Database and Data Modeling

Relational Database and Data Modeling
Chapter 23 Database Security and Authorization Copyright © 2004 Pearson Education, Inc.

Chapter 23 Database Security and Authorization Copyright © 2004 Pearson Education, Inc.
Relational Databases Chapter 4.

Relational Databases Chapter 4.
Database Management System

Database Management System
Information Security Principles & Applications

Information Security Principles & Applications
Chapter 12.3+ Information Systems Database Management.

Chapter Information Systems Database Management.
Database Management: Getting Data Together Chapter 14.

Database Management: Getting Data Together Chapter 14.
1 Pertemuan 01 Pengantar tentang database Matakuliah: >/ > Tahun: > Versi: >

1 Pertemuan 01 Pengantar tentang database Matakuliah: >/ > Tahun: > Versi: >
Security in Databases. 2 Srini & Nandita (CSE2500)DB Security Outline review of databases reliability & integrity protection of sensitive data protection.

Security in Databases. 2 Srini & Nandita (CSE2500)DB Security Outline review of databases reliability & integrity protection of sensitive data protection.
1 Minggu 7, Pertemuan 13 Security Matakuliah: T0206-Sistem Basisdata Tahun: 2005 Versi: 1.0/0.0.

1 Minggu 7, Pertemuan 13 Security Matakuliah: T0206-Sistem Basisdata Tahun: 2005 Versi: 1.0/0.0.
Security in Databases. 2 Outline review of databases reliability & integrity protection of sensitive data protection against inference multi-level security.

Security in Databases. 2 Outline review of databases reliability & integrity protection of sensitive data protection against inference multi-level security.
Chapter 4 Relational Databases Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 4-1.

Chapter 4 Relational Databases Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 4-1.
Mgt 20600: IT Management & Applications Databases Tuesday April 4, 2006.

Mgt 20600: IT Management & Applications Databases Tuesday April 4, 2006.
Last time Finish OTR Database Security Introduction to Databases

Last time Finish OTR Database Security Introduction to Databases
DBMS1 Database Management System (DBMS) Introductory Concepts Week-1.

DBMS1 Database Management System (DBMS) Introductory Concepts Week-1.
Chapter 4 Relational Databases Copyright © 2012 Pearson Education 4-1.

Chapter 4 Relational Databases Copyright © 2012 Pearson Education 4-1.
SE571 Security in Computing

SE571 Security in Computing
10/5/1999Database Management -- R. Larson Data Administration and Database Administration University of California, Berkeley School of Information Management.

10/5/1999Database Management -- R. Larson Data Administration and Database Administration University of California, Berkeley School of Information Management.
Management Information Systems

Management Information Systems
PHASE 3: SYSTEMS DESIGN Chapter 7 Data Design.

PHASE 3: SYSTEMS DESIGN Chapter 7 Data Design.

Similar presentations

Ads by Google