Database Security
Security of databases refers to the array of controls, tools, and procedures designed to ensure
and safeguard confidentiality, integrity, and accessibility. This tutorial will concentrate on
confidentiality because it's a component that is most at risk in data security breaches.
Security for databases must cover and safeguard the following aspects:
*The database containing data.
*Database management systems (DBMS)
*Any applications that are associated with it.
*Physical database servers or the database server virtual, and the hardware that runs it.
*The infrastructure for computing or network that is used to connect to the database.
Threats and Challenges:
*An insider threat can be an attack on security from any sources having an access privilege to
the database.
*The unintentional mistakes, weak passwords or sharing passwords, and other negligent or
uninformed behaviours of users remain the root causes of all data security breaches.
*failing to implement the patches on time could increase the risk of being hacked.
*It will be a threat, when Companies do not follow the safe coding practices for applications
and conduct regular vulnerability tests.
*Malware is software designed to exploit vulnerabilities or cause harm to databases.
*Companies that do not protect backup data using the same rigorous controls, they are at risk.
Cryptography:
Cryptography is the science of encoding information before sending via unreliable
communication paths so that only an authorized receiver can decode and use it.
The coded message is called cipher text and the original message is called plain text.
Security of databases refers to the array of controls, tools, and procedures designed to ensure
and safeguard confidentiality, integrity, and accessibility. This tutorial will concentrate on
confidentiality because it's a component that is most at risk in data security breaches.
Security for databases must cover and safeguard the following aspects:
*The database containing data.
*Database management systems (DBMS)
*Any applications that are associated with it.
*Physical database servers or the database server virtual, and the hardware that runs it.
*The infrastructure for computing or network that is used to connect to the database.
Threats and Challenges:
*An insider threat can be an attack on security from any sources having an access privilege to
the database.
*The unintentional mistakes, weak passwords or sharing passwords, and other negligent or
uninformed behaviours of users remain the root causes of all data security breaches.
*failing to implement the patches on time could increase the risk of being hacked.
*It will be a threat, when Companies do not follow the safe coding practices for applications
and conduct regular vulnerability tests.
*Malware is software designed to exploit vulnerabilities or cause harm to databases.
*Companies that do not protect backup data using the same rigorous controls, they are at risk.
Cryptography:
Cryptography is the science of encoding information before sending via unreliable
communication paths so that only an authorized receiver can decode and use it.
The coded message is called cipher text and the original message is called plain text.
