0% found this document useful (0 votes)

25 views

Data Security

The document discusses database security aspects like user management, password management, resource allocation, backup and recovery, and auditing for Bharat Sanchar Nigam Limited. It covers creating and modifying user profiles to set password and resource limits, implementing password policies, defining backup strategies, and guidelines for auditing database activities.

Uploaded by

Rajiv Behl

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

25 views

Data Security

Uploaded by

Rajiv Behl

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 36

Bharat Sanchar Nigam Limited, India

Managing Data Security

CC Faculty
ALTTC,Ghaziabad
Bharat Sanchar Nigam Limited, India
Database Security Aspects
User Management
Password Management
Managing Allocation of
Resources to Users
Backup and Recovery
Auditing
Bharat Sanchar Nigam Limited, India
USER MANAGEMENT
Bharat Sanchar Nigam Limited, India
Users and Security
Security
Domain
Account
Locking
Authentication
mechanism
Resource
limits
Tablespace
quota
Temporary
tablespace
Default
tablespace
Direct
privileges
Role
privileges
Bharat Sanchar Nigam Limited, India
User parameters
Authentication at OS level or
RDBMS level
Default space(tablespace)
Maximum space allocation for user
Password parameters
Bharat Sanchar Nigam Limited, India
Managing Privileges
System Privileges and Object
Privileges
Bharat Sanchar Nigam Limited, India
PASSWORD MANAGEMENT
Bharat Sanchar Nigam Limited, India
User
Password
history
Account
locking
Password Management
Setting up
profiles
Password
expiration
and aging
Password
verification
Bharat Sanchar Nigam Limited, India
Enabling Password Management
Set up password management by using
profiles and assigning them to users.
Lock, unlock, and expire accounts using the
CREATE USER or ALTER USER
command.
Password limits are always enforced.
Bharat Sanchar Nigam Limited, India
Password Account Locking
Parameter
Number of failed login attempts
before lockout of the account(3)
Number of days the account is
locked after the specified number
of failed login attempts(1/1440)
Description
FAILED LOGIN ATTEMPTS
PASSWORD LOCK TIME
Bharat Sanchar Nigam Limited, India
Password Expiration and Aging
Parameter
Lifetime of the password in days
after which the password expires(60)
Grace period in days for changing
the password after the first
successful login after the password
has expired(10)
Parameter
PASSWORD LIFE TIME
PASSWORD GRACE TIME
Bharat Sanchar Nigam Limited, India
Password History
Parameter
Number of days before a
password can be reused(unlimited)
Maximum number of times a
password can be reused(unlimited)
Description
PASSWORD REUSE TIME
PASSWORD REUSE MAX
Bharat Sanchar Nigam Limited, India
Password Verification
Parameter
PL/SQL function that
performs a
password complexity
check before a password
is assigned
Description
PASSWORD VERIFY FUNCTION
Bharat Sanchar Nigam Limited, India
Password Verification Function
VERIFY_FUNCTION
Minimum length is four characters.
Password should not be equal to
username.
Password should have at least one
alphabetic, one numeric, and one
special character.
Password should differ from the
previous password by at least three
letters.
Bharat Sanchar Nigam Limited, India
EXAMPLE OF PASSWORD VERIFICATION
FUNCTION
FUNCTION my_pwver (
userid_parameter IN VARCHAR2 (30),
password_parameter IN VARCHAR2 (30),
old_password_parameter IN VARCHAR2 (30)
) RETURN BOOLEAN IS
BEGIN
IF LENGTH(password_parameter ) < 6 THEN
RAISE_APPLICATION_ERROR(-2001, New password too short) ;
ELSE password_parameter = userid_parameter THEN
RAISE_APPLICATION_ERROR(-2002, New Password Same as username);
ELSEIF password_parameter = old_password_parameter THEN
RAISE_APPLICATION_ERROR(-2003, New Password same as old);
ELSE
RETURN(TRUE);
END IF;
END;
Bharat Sanchar Nigam Limited, India
Creating a Profile: Password Settings
CREATE PROFILE grace_5 LIMIT
FAILED_LOGIN_ATTEMPTS 3
PASSWORD_LOCK_TIME UNLIMITED
PASSWORD_LIFE_TIME 30
PASSWORD_REUSE_TIME 30
PASSWORD_VERIFY_FUNCTION
verify_function
PASSWORD_GRACE_TIME 5;
Bharat Sanchar Nigam Limited, India
Altering a Profile: Password Setting
Use ALTER PROFILE to change
password limits
ALTER PROFILE default LIMIT
FAILED_LOGIN_ATTEMPTS 3
PASSWORD_LIFE_TIME 60
PASSWORD_GRACE_TIME 10;
Bharat Sanchar Nigam Limited, India
MANAGING ALLOCATION OF
RESOURCES TO USERS
Bharat Sanchar Nigam Limited, India
Resource Management
Resource management limits can be
enforced at the session level, the call
level, or both.
Limits can be defined by profiles
Bharat Sanchar Nigam Limited, India
Setting Resource Limits at Session Level
Total CPU time measured in hundredths of
seconds
Number of concurrent sessions allowed for
each username
Elapsed connect time measured in minutes
Periods of inactive time measured in minutes
Number of data blocks (physical and logical
reads)
Bharat Sanchar Nigam Limited, India
Setting Resource Limits at Call Level
CPU time per call in hundredths of
seconds
Number of data blocks that can be
read per call
Bharat Sanchar Nigam Limited, India
Profiles
A profile is a named set of password and
resource limits.
Profiles are assigned to users by the
CREATE USER or ALTER USER
command.
Profiles can be enabled or disabled.
Profiles can relate to the DEFAULT profile.
Bharat Sanchar Nigam Limited, India
BACKUP & RECOVERY
MANAGEMENT
Bharat Sanchar Nigam Limited, India
Backup and Recovery Issues
Protect the database from
numerous types of failures
Increase Mean-Time-
Between_Failures (MTBF)
Decrease Mean-Time-To-Recover
Minimize Data Loss
Bharat Sanchar Nigam Limited, India
Categories of Failures
Statement Failure
User Process Failure
User Error
Network failure
Instance Failure
Media Failure
Bharat Sanchar Nigam Limited, India
Defining a Backup and Recovery
Strategy
Business Requirements
Operational Requirements
Technical Considerations
Management concurrence
Bharat Sanchar Nigam Limited, India
Business Requirements
Mean Time to recover
Mean Time Between Failures
Evolutionary Process
Bharat Sanchar Nigam Limited, India
Operational Requirements
24-hour operations
Testing and validating backups
Database volatility
Bharat Sanchar Nigam Limited, India
Technical Considerations
Resources: hardware, software,
manpower and time.
Physical image copies of the operating
system files
Logical copies of the objects in the
database
Database configuration
Transaction volume that affects desired
frequency of backups
Bharat Sanchar Nigam Limited, India
Disaster Recovery Issues
How will your business be affected
in the event of a major disaster,
such as:
Earthquake, flood, or fire
Complete loss of the machine
Loss of key personnel, eg DBA
Do you have a plan for testing
your strategy periodically?
Bharat Sanchar Nigam Limited, India
AUDITING
Bharat Sanchar Nigam Limited, India
What is Auditing?
Auditing is the monitoring of selected user
data base actions and is used to :-
Investigate suspicious database activity
Gather information about specific
database activities
Auditing can be performed by session or access
Bharat Sanchar Nigam Limited, India
Auditing Guidelines
Define what you want to audit:
Users, statements or objects
Statement executions
Successful statement executions,
unsuccessful or both
Manage your audit trail
Monitor the growth of the audit trail
Protect the audit trail from unauthorized
access
Bharat Sanchar Nigam Limited, India
Auditing categories
Auditing by default
Database Auditing
Enabled by the DBA
Cannot record column values
Value-based or application auditing
Implemented through code
Used to track changes to tables
Bharat Sanchar Nigam Limited, India
Auditing Options
Statement Auditing
Privilege Auditing
Object Auditing
Fine-grained auditing provides the
monitoring of data access based
on content
Bharat Sanchar Nigam Limited, India
Thanks!

SAP Security Interview Questions, Answers, and Explanations
From Everand
SAP Security Interview Questions, Answers, and Explanations
equitypress
4/5 (3)
FreeRADIUS Beginner's Guide
From Everand
FreeRADIUS Beginner's Guide
Dirk van der Walt
No ratings yet
DBSEC
No ratings yet
DBSEC
22 pages
IT Policy
No ratings yet
IT Policy
2 pages
Chapter 2
No ratings yet
Chapter 2
41 pages
Less08 Users PDF
No ratings yet
Less08 Users PDF
26 pages
f1 v2 Lect 14
No ratings yet
f1 v2 Lect 14
25 pages
Quick Reference Guide-OrACLE SUCRITY
No ratings yet
Quick Reference Guide-OrACLE SUCRITY
2 pages
CHAPTER - 6 - Database Security and Authorization - Handout
No ratings yet
CHAPTER - 6 - Database Security and Authorization - Handout
7 pages
Unit 5 NEW-1
No ratings yet
Unit 5 NEW-1
10 pages
Unit Three Database access management
No ratings yet
Unit Three Database access management
18 pages
Database Security
No ratings yet
Database Security
19 pages
DB Unit-5
No ratings yet
DB Unit-5
18 pages
Day+15+ +Course+Slides (1)
No ratings yet
Day+15+ +Course+Slides (1)
44 pages
CH 7 Advanced DB
No ratings yet
CH 7 Advanced DB
12 pages
Chapter Seven
No ratings yet
Chapter Seven
12 pages
data-p-sss3-web
No ratings yet
data-p-sss3-web
18 pages
4670 Lecture4 Profile Privilege
No ratings yet
4670 Lecture4 Profile Privilege
57 pages
Prevention of Malicious Transactions in Database Management Systems
No ratings yet
Prevention of Malicious Transactions in Database Management Systems
37 pages
Users
No ratings yet
Users
5 pages
Security and Authorization
No ratings yet
Security and Authorization
14 pages
Unit09
No ratings yet
Unit09
19 pages
DMS Chapter 5
No ratings yet
DMS Chapter 5
21 pages
Lab#6 Profiles, Users, Roles, and Privileges
No ratings yet
Lab#6 Profiles, Users, Roles, and Privileges
5 pages
Secured Database Application Development
No ratings yet
Secured Database Application Development
103 pages
Database Preparing Risa Question
No ratings yet
Database Preparing Risa Question
10 pages
lab3
No ratings yet
lab3
2 pages
Unit Iv
No ratings yet
Unit Iv
60 pages
Dice Resume CV Tapan Patel PDF
No ratings yet
Dice Resume CV Tapan Patel PDF
2 pages
Unit 8 Security
No ratings yet
Unit 8 Security
34 pages
Database - Security (1) Assignment
No ratings yet
Database - Security (1) Assignment
23 pages
DMA Chapter No5
No ratings yet
DMA Chapter No5
15 pages
SP22-BCS-092 5B Taha Azhar ASS-3
No ratings yet
SP22-BCS-092 5B Taha Azhar ASS-3
6 pages
Database Security
No ratings yet
Database Security
3 pages
Database Security: Kennesaw State University
No ratings yet
Database Security: Kennesaw State University
78 pages
SQL 12 DCL
No ratings yet
SQL 12 DCL
17 pages
1 Information Security Audit and Analysis Introduction 02-08-2021 (02 Aug 2021) Material - I - 02 Aug 2021 - 01 - Introduction
No ratings yet
1 Information Security Audit and Analysis Introduction 02-08-2021 (02 Aug 2021) Material - I - 02 Aug 2021 - 01 - Introduction
37 pages
unit5notes
No ratings yet
unit5notes
22 pages
Database Intrusion Detection Using Role Based Access Control System
No ratings yet
Database Intrusion Detection Using Role Based Access Control System
6 pages
Database Intrusion Detection Using Role Based Access Control System
No ratings yet
Database Intrusion Detection Using Role Based Access Control System
6 pages
Cust Copy 2
No ratings yet
Cust Copy 2
3 pages
Data Access and User Authentication Policy
No ratings yet
Data Access and User Authentication Policy
3 pages
Unit 4.1-2 Database Administration
No ratings yet
Unit 4.1-2 Database Administration
31 pages
DBMS_Module5
No ratings yet
DBMS_Module5
35 pages
ADBMS Manual
No ratings yet
ADBMS Manual
42 pages
Database Security CH 14
No ratings yet
Database Security CH 14
55 pages
ITEC-110
No ratings yet
ITEC-110
6 pages
Microsoft Azure Security Technologies Practice Tests AZ-500
From Everand
Microsoft Azure Security Technologies Practice Tests AZ-500
iCertify Training
No ratings yet
CH3. Database Security
No ratings yet
CH3. Database Security
15 pages
Database Security Basics VALIDITY
No ratings yet
Database Security Basics VALIDITY
3 pages
ShaikManishavali Resume 501
No ratings yet
ShaikManishavali Resume 501
1 page
SQL Server Security Checklist
100% (1)
SQL Server Security Checklist
3 pages
DBST UNIT I
No ratings yet
DBST UNIT I
8 pages
Ransomware Supplementary Proposal
No ratings yet
Ransomware Supplementary Proposal
4 pages
KKW Unit 5 (EXTRA)
No ratings yet
KKW Unit 5 (EXTRA)
15 pages
DSEC_3100_QUESTIONS, ANSWERS AI
No ratings yet
DSEC_3100_QUESTIONS, ANSWERS AI
10 pages
Microsoft AZURE® AZ-104 Administrator Practice Tests
From Everand
Microsoft AZURE® AZ-104 Administrator Practice Tests
iCertify Training
No ratings yet
Adb CH3
No ratings yet
Adb CH3
26 pages
Methods of managing security
No ratings yet
Methods of managing security
17 pages
Practical File: Guru Gobind Singh Indraprastha University
No ratings yet
Practical File: Guru Gobind Singh Indraprastha University
51 pages
Prelims Magic Paper - I PDF
No ratings yet
Prelims Magic Paper - I PDF
1,025 pages
Fabiflu 800 Co-Pack Tablet 18's (800+200 MG)
No ratings yet
Fabiflu 800 Co-Pack Tablet 18's (800+200 MG)
1 page
APFC EPFO Exam Pattern
No ratings yet
APFC EPFO Exam Pattern
1 page
PGDLL 01
No ratings yet
PGDLL 01
82 pages
Air India - Seatmap
No ratings yet
Air India - Seatmap
1 page
Diploma Examination, 2013: 130. Administrative Laws
No ratings yet
Diploma Examination, 2013: 130. Administrative Laws
1 page
Chapter02 GPMS
No ratings yet
Chapter02 GPMS
37 pages
Tribes in India
No ratings yet
Tribes in India
13 pages
Tribes in India
No ratings yet
Tribes in India
13 pages
Certification Drive For Wipro Infotech: Code - Help - PHP
No ratings yet
Certification Drive For Wipro Infotech: Code - Help - PHP
2 pages
Excise Obc
No ratings yet
Excise Obc
58 pages
1 53554doc 0046
No ratings yet
1 53554doc 0046
2 pages
Sociology Ias Dream
No ratings yet
Sociology Ias Dream
75 pages
Emile Durkheim (1858-1917) : The Division of Labor (1893) (Doctoral Thesis)
No ratings yet
Emile Durkheim (1858-1917) : The Division of Labor (1893) (Doctoral Thesis)
3 pages
Bharat Sanchar Nigam Limited: AD (Sports) & Secretary, CSCB
No ratings yet
Bharat Sanchar Nigam Limited: AD (Sports) & Secretary, CSCB
2 pages
ANSWERS CSAT (Reading Comprehension and Decision Making) Set No. 09
No ratings yet
ANSWERS CSAT (Reading Comprehension and Decision Making) Set No. 09
2 pages
Bharat Sanchar Nigam Limited: (A Govt. of India Enterprise)
No ratings yet
Bharat Sanchar Nigam Limited: (A Govt. of India Enterprise)
3 pages
R T A C: State Level Trekking Program
No ratings yet
R T A C: State Level Trekking Program
4 pages
Answers With Explanation Polity & Governance
No ratings yet
Answers With Explanation Polity & Governance
5 pages
Tribes in India
No ratings yet
Tribes in India
13 pages

Data Security

Uploaded by

Data Security

Uploaded by

Bharat Sanchar Nigam Limited, India

Managing Data Security

You might also like