Open navigation menu

Scribd

0% found this document useful (0 votes)

8 views

Database Security 1

Uploaded by

Copyright

© © All Rights Reserved

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

8 views

Database Security 1

Uploaded by

Copyright

© © All Rights Reserved

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 4

Database Security

Database security refers to the measures taken to protect a database from unauthorized access, misuse,
and threats such as cyberattacks, data leaks, and breaches. It ensures confidentiality, integrity, and
availability (CIA) of data stored in the database.

2. Importance of Database Security

• Prevents unauthorized access – Protects sensitive data from cybercriminals.

• Maintains data integrity – Ensures that data is not altered or corrupted.

• Ensures availability – Protects against attacks that can bring the system down.

• Legal and regulatory compliance – Helps organizations adhere to laws like GDPR, HIPAA, and
PCI DSS.

3. Threats to Database Security

Databases face various threats that can compromise data security:

A. External Threats

1. SQL Injection Attacks – Attackers inject malicious SQL queries to manipulate or extract data.

2. Denial of Service (DoS) Attacks – Overloads the database, making it unavailable.

3. Malware and Ransomware – Malicious software that encrypts or damages data.

4. Phishing Attacks – Trick users into revealing database credentials.

B. Internal Threats

1. Insider Threats – Employees or administrators misusing their access.

2. Weak Authentication – Using simple passwords or no multi-factor authentication.

3. Human Errors – Accidental data deletion or misconfigurations.

4. Unauthorized Privilege Escalation – Users gaining higher privileges than assigned.

4. Database Security Models

Security models define how databases enforce access control and security policies.

A. Discretionary Access Control (DAC)

• The database owner assigns permissions.

• Uses Access Control Lists (ACLs) to manage access.

• Flexible but vulnerable to privilege misuse.

• Example: Granting a user access to only specific tables in MySQL.

B. Mandatory Access Control (MAC)

• Access is restricted based on security labels and levels.

• Users cannot change access permissions.

• Commonly used in military and government environments.

• Example: Classifying data as Top Secret, Confidential, Public.

C. Role-Based Access Control (RBAC)

• Access is granted based on the user’s role within the organization.

• Reduces the risk of privilege misuse.

• Example: A database administrator has full access, while employees can only read data.

D. Attribute-Based Access Control (ABAC)

• Access is based on attributes such as user location, device type, time of access.

• Dynamic and flexible security model.

• Example: A user can only access a database during work hours from an office network.

5. Database Security Techniques

A. Authentication and Access Control

1. Strong Passwords & Multi-Factor Authentication (MFA) – Protects database credentials.

2. Role-Based Access Control (RBAC) – Restricts access based on roles.

3. Least Privilege Principle – Users get only the minimum permissions needed.

B. Data Encryption

• At Rest Encryption: Encrypting stored data using AES-256.

• In Transit Encryption: Protecting data in transmission using SSL/TLS.

C. Database Auditing and Monitoring

• Tracks who accessed, modified, or deleted data.

• Uses database logs and Security Information and Event Management (SIEM) systems.

D. Backup and Recovery

• Regular backups prevent data loss in case of cyberattacks or hardware failures.

• Full, incremental, and differential backups are used.

E. Intrusion Detection and Prevention Systems (IDPS)

• Detects and blocks unauthorized access.

• Example: Using Snort IDS for monitoring database activity.

6. Database Security Best Practices

1. Use Firewalls and Network Security Measures – Prevent direct database access from the
internet.

2. Apply Security Patches and Updates – Protect against known vulnerabilities.

3. Limit User Privileges – Follow the Principle of Least Privilege (PoLP).

4. Disable Unnecessary Features – Turn off unused database services.

5. Regular Security Audits – Identify potential security loopholes.

7. Example: Implementing Basic Database Security in MySQL

A. Creating a Secure User with Limited Privileges

sql

CopyEdit

CREATE USER 'secure_user'@'localhost' IDENTIFIED BY 'StrongPassword123!';

GRANT SELECT, INSERT ON company_db.* TO 'secure_user'@'localhost';

FLUSH PRIVILEGES;

• The user secure_user can only read and insert data in company_db.

B. Encrypting Data in MySQL

CREATE TABLE employees (

id INT PRIMARY KEY,

name VARCHAR(100),

salary VARBINARY(255) NOT NULL

);

INSERT INTO employees VALUES (1, 'John Doe', AES_ENCRYPT('5000', 'encryption_key'));

SELECT name, AES_DECRYPT(salary, 'encryption_key') FROM employees;

• Encrypts salary data before storing it.

You might also like

E03 ReferenceDataModel TryMe
No ratings yet
E03 ReferenceDataModel TryMe
30 pages
DMX and Vmax Commands Quick References
50% (2)
DMX and Vmax Commands Quick References
14 pages
DBMS_Module5
No ratings yet
DBMS_Module5
35 pages
161718 Lecture
No ratings yet
161718 Lecture
24 pages
Database Security Issues
No ratings yet
Database Security Issues
7 pages
Chapter 10 Database Protection
No ratings yet
Chapter 10 Database Protection
8 pages
Database Security
No ratings yet
Database Security
5 pages
FALLSEM2024-25_BCSE410L_TH_VL2024250101903_2024-11-18_Reference-Material-III
No ratings yet
FALLSEM2024-25_BCSE410L_TH_VL2024250101903_2024-11-18_Reference-Material-III
25 pages
Mobile DB Security
No ratings yet
Mobile DB Security
25 pages
Chapter 6 Database Security and Authorization
No ratings yet
Chapter 6 Database Security and Authorization
6 pages
Ajay Unit 3 DBMS
No ratings yet
Ajay Unit 3 DBMS
8 pages
23CB301 Unit5-4
No ratings yet
23CB301 Unit5-4
11 pages
Database Security, Distributed Databases and Database Failure
No ratings yet
Database Security, Distributed Databases and Database Failure
4 pages
database security write up
No ratings yet
database security write up
4 pages
CH- 7
No ratings yet
CH- 7
22 pages
Group 1 - Database Management
No ratings yet
Group 1 - Database Management
23 pages
DBMS 5
No ratings yet
DBMS 5
3 pages
Lecture 7 Database security
No ratings yet
Lecture 7 Database security
30 pages
Chapter Five Database Secu
No ratings yet
Chapter Five Database Secu
17 pages
Chapter 6
No ratings yet
Chapter 6
35 pages
DMS Unit 5
No ratings yet
DMS Unit 5
21 pages
Database Integrity and Security Concepts
No ratings yet
Database Integrity and Security Concepts
6 pages
computer information and security basics part 3
No ratings yet
computer information and security basics part 3
8 pages
Week5
No ratings yet
Week5
7 pages
DB_Theory4
No ratings yet
DB_Theory4
6 pages
Databasesecurity 210519091013
No ratings yet
Databasesecurity 210519091013
21 pages
Minimizing Database and Storage Security Risks
No ratings yet
Minimizing Database and Storage Security Risks
5 pages
Database Security
No ratings yet
Database Security
34 pages
Course Code: Comp 324: Course Name: Database Management System II Lecture 4: Database Security and Authorization
No ratings yet
Course Code: Comp 324: Course Name: Database Management System II Lecture 4: Database Security and Authorization
16 pages
GRADE 11 DP - Database Security
No ratings yet
GRADE 11 DP - Database Security
3 pages
Course1 DBSecurity Intro
No ratings yet
Course1 DBSecurity Intro
45 pages
CIT-503 DAM Week 7
No ratings yet
CIT-503 DAM Week 7
37 pages
Database Security Lecture
No ratings yet
Database Security Lecture
45 pages
Database Security
No ratings yet
Database Security
3 pages
Part10 Database Security
No ratings yet
Part10 Database Security
17 pages
DSEC_3100_QUESTIONS, ANSWERS AI
No ratings yet
DSEC_3100_QUESTIONS, ANSWERS AI
10 pages
SQL Server Security Best Practices 0932719630
No ratings yet
SQL Server Security Best Practices 0932719630
7 pages
Security in Cloud
No ratings yet
Security in Cloud
36 pages
Best Practices On SQL Server Security
No ratings yet
Best Practices On SQL Server Security
2 pages
Dbms Unit III
No ratings yet
Dbms Unit III
26 pages
CH3. Database Security
No ratings yet
CH3. Database Security
15 pages
unit5notes
No ratings yet
unit5notes
22 pages
Lesson 3 Access Control
No ratings yet
Lesson 3 Access Control
4 pages
Unit 9. Database Security
No ratings yet
Unit 9. Database Security
36 pages
Combating Internal Data Insecurity
No ratings yet
Combating Internal Data Insecurity
14 pages
SS3 DATA PROCESSING NOTE
No ratings yet
SS3 DATA PROCESSING NOTE
22 pages
Database Security
No ratings yet
Database Security
9 pages
Hacking in Database
No ratings yet
Hacking in Database
7 pages
Database Security
No ratings yet
Database Security
7 pages
Module 4 security dbms(merrin)
No ratings yet
Module 4 security dbms(merrin)
18 pages
Atabase Ecurity: Ravindranath Kanaujia Amit Tukshetti Vikas Gupta & Deepak Prakash
No ratings yet
Atabase Ecurity: Ravindranath Kanaujia Amit Tukshetti Vikas Gupta & Deepak Prakash
14 pages
Database Security
No ratings yet
Database Security
18 pages
Database Security
No ratings yet
Database Security
18 pages
DBMS-unit 5-database security
No ratings yet
DBMS-unit 5-database security
13 pages
DB Security Lect 1 Part I 2 14
No ratings yet
DB Security Lect 1 Part I 2 14
13 pages
Database Security
No ratings yet
Database Security
26 pages
Introduction To Database Security
No ratings yet
Introduction To Database Security
5 pages
Unit 8 Security
No ratings yet
Unit 8 Security
34 pages
Chapter 9 Database Security
No ratings yet
Chapter 9 Database Security
21 pages
ITT 07404 - Presentation 6
No ratings yet
ITT 07404 - Presentation 6
29 pages
DBMS - Bba Unit 4
No ratings yet
DBMS - Bba Unit 4
16 pages
Database Management System
From Everand
Database Management System
Knowledge Flow
No ratings yet
D.K.T.E. Society's Yashwantrao Chavan Polytechnic, Ichalkaranji
No ratings yet
D.K.T.E. Society's Yashwantrao Chavan Polytechnic, Ichalkaranji
12 pages
Evaluation and Validation of Research Publication
No ratings yet
Evaluation and Validation of Research Publication
6 pages
Interview Questions
No ratings yet
Interview Questions
2 pages
2022 IEEE Java
No ratings yet
2022 IEEE Java
13 pages
J BASETo Oracle
No ratings yet
J BASETo Oracle
91 pages
AP03-AA4-EV04 DOC Taller Elaboracion Resumenes
No ratings yet
AP03-AA4-EV04 DOC Taller Elaboracion Resumenes
5 pages
Latin American Mystery Writers An A To Z Guide - Compress
No ratings yet
Latin American Mystery Writers An A To Z Guide - Compress
264 pages
IEEE STD 81-1983
100% (1)
IEEE STD 81-1983
44 pages
Cit1104-Dit1101 Introduction To Database Reg Supp
No ratings yet
Cit1104-Dit1101 Introduction To Database Reg Supp
3 pages
AWS Notes by Quality Thoughts
No ratings yet
AWS Notes by Quality Thoughts
13 pages
Hallmark Bile Acid Metabolism
No ratings yet
Hallmark Bile Acid Metabolism
1 page
Database Normalization
No ratings yet
Database Normalization
16 pages
Microsoft Power BI
No ratings yet
Microsoft Power BI
19 pages
Wa0005.
No ratings yet
Wa0005.
2 pages
1993 HYUNDAI Elantra Owners Manual: Table of Content
No ratings yet
1993 HYUNDAI Elantra Owners Manual: Table of Content
2 pages
Chapter 1 Database
No ratings yet
Chapter 1 Database
18 pages
IBM Mainframe COBOL DB2 JCL CICS Tutorials
No ratings yet
IBM Mainframe COBOL DB2 JCL CICS Tutorials
21 pages
Key Features of Excel
No ratings yet
Key Features of Excel
4 pages
Data Base
No ratings yet
Data Base
3 pages
Data Warehousing Stages of Growth
No ratings yet
Data Warehousing Stages of Growth
9 pages
Introduction To Management Information System (Mis)
No ratings yet
Introduction To Management Information System (Mis)
9 pages
Week 3 Constraints Lab
No ratings yet
Week 3 Constraints Lab
7 pages
Upload A Document To Access Your Download: Hope and Healing - Canon Improvisation No. 15, Kyle Landry
No ratings yet
Upload A Document To Access Your Download: Hope and Healing - Canon Improvisation No. 15, Kyle Landry
3 pages
Integrating Icms Reports Into Access
No ratings yet
Integrating Icms Reports Into Access
6 pages
Introduction To Nosql: Gabriele Pozzani
No ratings yet
Introduction To Nosql: Gabriele Pozzani
49 pages
L1 Introduction To Information and Communication Technology
No ratings yet
L1 Introduction To Information and Communication Technology
19 pages
Relational Schema Exercises
100% (1)
Relational Schema Exercises
3 pages
MongoDB Atlas Datasheet
No ratings yet
MongoDB Atlas Datasheet
2 pages