tailieunhanh - Bài giảng Hệ quản trị cơ sở dữ liệu - Chương 13: Security
Bài giảng chương 13 đề cập đến vấn đề bảo mật trong cơ sở dữ liệu. Chương này trình bày những nội dung chinh như: Introduction to database security, access control, discretionary access control, specifying privileges using views, revoking privileges, propagation of privileges using the grant option,. . | Chương 13 Security 1 Introduction to Database Security Types of Security Legal and ethical issues Policy issues System-related issues The need to identify multiple security levels 2 Introduction to Database Security Threats to databases Loss of integrity Loss of availability Loss of confidentiality To protect databases, four kinds of countermeasures can be implemented: Access control Inference control Flow control Encryption 3 Introduction to Database Security A DBMS typically includes a database security and authorization subsystem that is responsible for ensuring the security portions of a database against unauthorized access. Two types of database security mechanisms: Discretionary security mechanisms Mandatory security mechanisms 4 Introduction to Database Security The security mechanism of a DBMS must include provisions for restricting access to the database as a whole This function is called access control and is handled by creating user accounts and . | Chương 13 Security 1 Introduction to Database Security Types of Security Legal and ethical issues Policy issues System-related issues The need to identify multiple security levels 2 Introduction to Database Security Threats to databases Loss of integrity Loss of availability Loss of confidentiality To protect databases, four kinds of countermeasures can be implemented: Access control Inference control Flow control Encryption 3 Introduction to Database Security A DBMS typically includes a database security and authorization subsystem that is responsible for ensuring the security portions of a database against unauthorized access. Two types of database security mechanisms: Discretionary security mechanisms Mandatory security mechanisms 4 Introduction to Database Security The security mechanism of a DBMS must include provisions for restricting access to the database as a whole This function is called access control and is handled by creating user accounts and passwords to control login process by the DBMS. 5 Introduction to Database Security The security problem associated with databases is that of controlling the access to a statistical database, which is used to provide statistical information or summaries of values based on various criteria. The countermeasures to statistical database security problem is called inference control measures. 6 Introduction to Database Security Another security is that of flow control, which prevents information from flowing in such a way that it reaches unauthorized users. Channels that are pathways for information to flow implicitly in ways that violate the security policy of an organization are called covert channels. 7 Introduction to Database Security A final security issue is data encryption, which is used to protect sensitive data (such as credit card numbers) that is being transmitted via some type communication network. The data is encoded using some encoding algorithm. An unauthorized user
đang nạp các trang xem trước