Implementing database security and auditing [electronic resource] : a guide for DBAs, information security administrators and auditors / Ron Ben Natan
(Visualizza in formato marc)
(Visualizza in BIBFRAME)
| Autore: |
Ben-Natan, Ron.
|
| Titolo: |
Implementing database security and auditing [electronic resource] : a guide for DBAs, information security administrators and auditors / Ron Ben Natan
|
| Pubblicazione: | Burlington, MA : Elsevier Digital Press, c2005 |
| Descrizione fisica: | xvii, 413 p. : ill. ; 24 cm. |
| Disciplina: | 005.8 |
| Soggetto topico: | Computer security |
| Data protection | |
| Database security | |
| Systèmes informatiques - Sécurité - Mesures | |
| Protection de l'information (Informatique) | |
| Bases de données - Sécurité - Mesures | |
| Soggetto genere / forma: | Electronic books. |
| Note generali: | Includes index. |
| Nota di contenuto: | Preface -- 1. Getting Started -- 2. Database Security within the General Security -- Landscape and a Defense-in-Depth Strategy -- 3. The Database as a Networked Server -- 4. Authentication and Password Security -- 5. Application Security -- 6. Using Granular Access Control -- 7. Using the Database To Do Too Much -- 8. Securing database-to-database communications -- 9. Trojans -- 10. Encryption -- 11. Regulations and Compliance -- 12. Auditing Categories -- 13. Auditing Architectures -- Index. |
| Sommario/riassunto: | This book is about database security and auditing. You will learn many methods and techniques that will be helpful in securing, monitoring and auditing database environments. It covers diverse topics that include all aspects of database security and auditing - including network security for databases, authentication and authorization issues, links and replication, database Trojans, etc. You will also learn of vulnerabilities and attacks that exist within various database environments or that have been used to attack databases (and that have since been fixed). These will often be explained to an internals level. There are many sections which outline the anatomy of an attack before delving into the details of how to combat such an attack. Equally important, you will learn about the database auditing landscape both from a business and regulatory requirements perspective as well as from a technical implementation perspective. * Useful to the database administrator and/or security administrator - regardless of the precise database vendor (or vendors) that you are using within your organization. * Has a large number of examples - examples that pertain to Oracle, SQL Server, DB2, Sybase and even MySQL.. * Many of the techniques you will see in this book will never be described in a manual or a book that is devoted to a certain database product. * Addressing complex issues must take into account more than just the database and focusing on capabilities that are provided only by the database vendor is not always enough. This book offers a broader view of the database environment - which is not dependent on the database platform - a view that is important to ensure good database security. |
| Eiproduzione: | Electronic reproduction. Amsterdam : Elsevier Science & Technology, 2007. Mode of access: World Wide Web. System requirements: Web browser. Title from title screen (viewed on Aug. 2, 2007). Access may be restricted to users at subscribing institutions. |
| ISBN: | 9781555583347 |
| 1555583342 | |
| Formato: | Risorse elettroniche  |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione: | Inglese |
| Record Nr.: | 991003247759707536 |
| Lo trovi qui: | Univ. del Salento |
| Localizzazioni e accesso elettronico | http://www.sciencedirect.com/science/book/9781555583347 |
| Opac: | Controlla la disponibilità qui |
Altra ed. diverso supporto:
Original 1555583342 9781555583347 (DLC) 2005045748 (OCoLC)58053263