Presentation is loading. Please wait.

Presentation is loading. Please wait.

Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions.

Similar presentations


Presentation on theme: "Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions."— Presentation transcript:

1 Advanced Databases DBA: Security 1

2 Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions. Understand the purpose of Roles. Explore Security-focused SQL. 2

3 Advanced Databases Data Admin –vs- DB Admin Data Administration Owns the DATA High-level function Policy & Procedure Planning DBMS independent Strategic Maps out Security Plans Database Administration Owns the Database Technical function Policy &Procedure Enforcement DBMS dependent Tactical Carries out Security Plans Guide to Oracle 10g 3

4 Advanced Databases Data Admin Matrix Data Security documentation tool. Crafted by DA, Carried out by DBA. Guide to Oracle 10g 4 RoleObject(s)Permission s Order Entry Orders Order Items Insert, Read Credit Approval CustomersUpdate

5 Advanced Databases Security Explained via Cheezy Graphic 5 User System Privilege Role Object

6 Advanced Databases Specifying System Privileges System privilege –Right to perform a specific action –DBA grants system privileges to users or roles –Use System Privileges page in Create User page Object privilege –Associated permissions of an object –DBA or users grant to users or roles Admin Option- gives user permissions to grant rights. 6

7 Advanced Databases System Privileges Reference http://docs.oracle.com/cd/B28359 _01/server.111/b28286/statements _9013.htm#sthref8513 7

8 Advanced Databases System Privileges Example Let’s check out OEM and do a demo. GRANT REVOKE 8

9 Advanced Databases Roles Special database object Represents collection of system privileges Can be assigned to multiple users Create role –Can inherit privileges from other roles Simpler than assigning system privileges to each user. Guide to Oracle 10g 9

10 Advanced Databases Role Examples Let’s checkout OEM and do a demo. CREATE ROLE GRANT 10

11 Advanced Databases Group Activity Data / DB Admin With Fudgemart Data Administrator’s Hat Construct a Data Administrator’s Matrix of Role, Object(s) and Permissions(s) for Customers on the Fudgemart website. Database Administrator’s Hat Carry out the security role set by the data administrator. Write CREATE / GRANT statements to make a role for the WEB user to be included in. 11 Recall Fudgemart Has: Customers, Employees, Products, Orders, Departments, Vendors, and Timesheets.

12 Advanced Databases Questions 12


Download ppt "Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions."

Similar presentations


Ads by Google