March6-database-security - Database Security CS461/ECE422...

Info iconThis preview shows pages 1–12. Sign up to view the full content.

View Full Document Right Arrow Icon
Database’Security’ CS461/ECE422’ Spring’2013’
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Overview’ Database’model’ RelaBonal’Databases’ Access’Control’ Inference’and’StaBsBcal’Databases’ Database’encrypBon’ The’Cloud’
Background image of page 2
Reading’Material’ Chapter’5’of’the’text’
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
4’ MoBvaBon’ Databases’are’a’common’element’in’today's’ system’architecture’ Hold’important’informaBon’ Target’of’a±acks’ Sequel’‘injecBon’a±ack²’ A±acker’gets’SQL’database’to’run’malware’via’SQL’ input’
Background image of page 4
5’ Database’Advantages’ Years’and’years’of’technology’improvements’ Data’integrity’and’consistency’ ACID’transacBons’ Atomicity’:’all’or’nothing’ ’Consistency’:’transacBon’brings’D±’from’one’valid’state’to’ another’ ’IsolaBon’:’concurrent’execuBon’equivalent’to’serial’ Durability’:’commiMed’transacBons’remain’aXer’failure’ Decent’performance’in’face’of’integrity’and’ consistency’requirements’ Common’well’understood’model’ Shared’access’ Controlled’access’
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Database’Elements’
Background image of page 6
7’ RelaBonal’Model’ InformaBon’stored’in’relaBons’or’tables’ Each’row’is’a’tuple’of’a±ributes’ Manipulated’by’standard’SQL’language’ Name UID College GPA Financial Aid Alice 1232 Eng 4 0 Bob 3234 Eng 1.2 $5,000.00 Carol 4565 Bus 3.8 0 Dave 8988 Edu 2.1 0 Ellen 3234 ACES 3.1 $100.00 Alice 4534 LAS 2.9 $10,000.00
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
8’ Combining’tables’ Can’use’Join’to’create’single’set’of’tuples’ from’mulBple’tables.’ Name UID Major Alice 1234 ECE Bob 2345 NUC Carol 3456 BA Dave 4567 French UID Dorm 1234 LAR 2345 ISR 3456 FAR 4567 PAR Name Dorm Major Alice LAR ECE Bob ISR NUC Carol FAR BA Dave PAR French
Background image of page 8
9’ Making’Queries’ Can’select’rows’to’create’subtables’ – Select Name, UID, Financial Aid from Students where College = 'Eng' Name UID College GPA Financial Aid Alice 1232 Eng 4 0 Bob 3234 Eng 1.2 $5,000.00 Carol 4565 Bus 3.8 0 Dave 8988 Edu 2.1 0 Ellen 3234 ACES 3.1 $100.00 Alice 4534 LAS 2.9 $10,000.00 Name UID Financial Aid Alice 1232 0 Bob 3234 $5,000.00
Background image of page 9

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
10’ Access’Control’in’the’SQL’Model’ Don't’have’to’have’a’single’owner’of’all’data’ Can’create’new’table’ Use’“Grant”’to’give’others’privileges’on’table’ Can’create’views’to’have’Fner’granularity’ with’access’control’ Can’delegate’privilege’granBng’authority’to’ others’ Access Control Slides from Lars Olson (Griffiths and Wade)
Background image of page 10
11’ SQL’ grant ’Syntax’ grant privilege_list on resource to user_list; Privileges’include’ select ,’ insert ,’ etc.
Background image of page 11

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Image of page 12
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

Page1 / 56

March6-database-security - Database Security CS461/ECE422...

This preview shows document pages 1 - 12. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online