AN APPRAISAL OF DATABASE SECURITY IN A BUSINESS ORGANIZATION

Security, Privacy, and Trust in Modern Data Management, 2007

As organizations increase their reliance on information systems for daily business, they become more vulnerable to security breaches. Though a number of techniques, such as encryption and electronic signatures, are currently available to protect data when transmitted across sites, a truly comprehensive approach for data protection must also include mechanisms for enforcing access control policies based on data contents, subject qualifications and characteristics, and other relevant contextual information, such as time. ...

2014

A database-management system (DBMS) is a collection of correlated data and a set of programs to access correlated data. The collection of data, usually referred to as the database, contains information able to an enterprise. And hence the concept of security lies with-in. As the database contains all information relevant to particular enterprise, so it's very important to be in safe side to prevent all threats related to data. Various Security Mechanisms have been developed to prevent ill-legal and un-authorized access of data (enterprise related, web or network related etc.) by un-authorized users and hackers. Database security is a growing concern of the market these days as there has been found an un-expected growth in ill-legal access of data. This paper is the brief analysis of all the threats and attacks against database security and integrity. Database security is the mechanisms that secure the database from data tampering, deliberate threats, unauthorized users and hackers. Security refers to protecting data from unauthorized users and Integrity refers to protecting the data against authorized users. Both concepts must be taken into consideration for making a complete check on overall security of database.

Information security is vital. It conditions the economic activity of companies and the trust in public bodies voluntary or accidental disclosure of financial or private data can have unfortunate consequences economic, commercial and ... legal, around 25% of incidents are internal staff, 50% are due to loss or theft of miscellaneous equipment. What is the security of IT and methodology of security management of IT? What is the concept of penetration database? How to Secure databases and ensuring compliance? what are the strategic and technical security measures for good database security?

IAEME PUBLICATION, 2023

This research paper delves into the critical realm of database security, a pressing concern for modern organizations with sensitive data. It explores various security threats faced by database systems, including both external cyberattacks and internal vulnerabilities and emphasizes the need for robust security measures. The paper discusses the implementation of advanced techniques such as multi-factor authentication, encryption, and access control models to mitigate risks. Furthermore, it examines the effectiveness of user authentication protocols and compliance policies in protecting databases from unauthorized access and data breaches. A novel security model is proposed, integrating these measures to enhance the overall security of database systems. The study underlines the continuous evolution of cyber threats and the necessity for ongoing research to adapt and strengthen database security strategies, aiming to safeguard sensitive information and maintain organizational integrity in an increasingly digital world.

2009

Abstract—Security models, developed for databases, differ in many aspects because they focus on different features of the database security problem or because they make different assumptions about what constitutes a secure database. This leads to disjointed and incomplete ...

International Journal of Advance Research and Innovative Ideas in Education, 2017

These days a Database security has turned into a critical issue in specialized world. The fundamental target of database security is to prohibit superfluous data presentation and change information while guaranteeing the accessibility of the required administrations. A quantities of security techniques have been made for ensuring the databases. Numerous security models have been created in view of various security parts of database. These security strategies are valuable just when the database administration framework is composed and creating for ensuring the database. As of late the development of web application with database at its backend Secure Database Management System is more fundamental than just a Secure Database.Consequently this paper feature on the Threats, Security Methods and Vulnerabilities in Database Management System with the assistance of review performed on the field of secure databases.

In computer field the Database security is very important. In database security we restrict the unauthorized access to the database. Considering the importance of data in organization, it is absolutely essential to secure the data present in the database. Data of a particular organization is confidential. In database security we restrict the user to access the data. Only particular users are allowed to access the data. To implement any security solution for a computing system, organization must ensure three aspects namely policy, mechanism and assurance. The requirements that must be implemented in hardware, software and outside the computing system are defined under policy. Proper mechanism to implement the requirements discussed in the policy is indispensable for an organization to have good computing security solution. Assurance is to ensure that mechanism meets the policy requirements of the organization [8]. In this paper, concise review of major database security techniques.

IEEE Transactions on Dependable and …, 2005

As organizations increase their reliance on, possibly distributed, information systems for daily business, they become more vulnerable to security breaches even as they gain productivity and efficiency advantages. Though a number of techniques, such as encryption and electronic signatures, are currently available to protect data when transmitted across sites, a truly comprehensive approach for data protection must also include mechanisms for enforcing access control policies based on data contents, subject qualifications and characteristics, and other relevant contextual information, such as time. It is well understood today that the semantics of data must be taken into account in order to specify effective access control policies. Also, techniques for data integrity and availability specifically tailored to database systems must be adopted. In this respect, over the years the database security community has developed a number of different techniques and approaches to assure data confidentiality, integrity, and availability. However, despite such advances, the database security area faces several new challenges. Factors such as the evolution of security concerns, the "disintermediation" of access to data, new computing paradigms and applications, such as grid-based computing and ondemand business, have introduced both new security requirements and new contexts in which to apply and possibly extend current approaches. In this paper, we first survey the most relevant concepts underlying the notion of database security and summarize the most well-known techniques. We focus on access control systems, on which a large body of research has been devoted, and describe the key access control models, namely, the discretionary and mandatory access control models, and the role-based access control (RBAC) model. We also discuss security for advanced data management systems, and cover topics such as access control for XML. We then discuss current challenges for database security and some preliminary approaches that address some of these challenges.

In today's world, data is generated at a very rapid speed and final destination of such data is database. Data is stored in database for easy and efficient way to manage these data. All the operations of data manipulation and maintenance are done using Database Management System. Considering the importance of data in organization, it is absolutely essential to secure the data present in the database. A secure database is the one which is reciprocated from different possible database attacks. Security models are required to develop for databases. These models are different in many aspects as they are dealing with different issues of the database security. They may different also because of they are taking different assumptions about what constitutes a secure database. So, it becomes very difficult for database security seekers to select appropriate model for securing their database. In this paper, we have discussed some of the attacks that can be possible with its counter measures and its control methods that can be possible. Securing database is important approach for the planning of explicit and directive based database security requirements. Ensuring security for database is very critical issues for the companies. As complexity of database increases, we may tend to have more complex security issues of database.

Conference: 7th International Conference on Software Engineering and Applications (SOFEA 2021), 2021

Databases are vulnerable. Public statements by Target, Home Depot, and Anthem following their extremely advertised data breaches are each uniform and succinct on how their breaches unfolded: unauthorized access to those systems that ultimately led to the extraction of sensitive information. A comprehensive strategy to secure a database is over data security. Usually, security events will be related to the later action: illegitimate access to data confidentiality damage, injury to the integrity of knowledge, and loss of data accessibility (Discover). Loss of privacy of data, creating them accessible to others without a right of access is not visible within the database and does not need changes deductible database. This paper addresses these events to confirm database security.

Summary - A common problem of security for all computer systems is to prevent unauthorized persons from gaining access to the system, either for information, making malicious changes to all or a portion or entire database. Some basic steps to start managing security in the design and implementation of a database rules are presented. . Keywords : cryptography, database management, security , encryption algorithms.

IOSR Journal of Computer Engineering, 2013

The premise of this paper is to analyze the various attributes by which the performance of database can be improved as well as for security of database. This paper provides an overview about how user, database administrator, system etc. affects the database security and also its performance. Author will try to analyze which of the attribute is better than the other one among various categories of attributes in terms of system performance and user authentication.

1993

This chapter discusses the topic of data security and controls, primarily in the context of Database Management Systems DBMSs. The emphasis is on basic principles and mechanisms, which have been successfully used by practitioners in actual products and systems. Where appropriate, the limitations of these techniques are also noted. Our discussion focuses on principles and general concepts. It is therefore independent of any particular product except for section 7 which discusses some products.

In the contemporary era, Data is the most valuable resource that is used in day to day life from an individual to large organizations. Database contains useful and confidential information so it becomes necessary to protect it from any unauthorized access. Any unauthorized user can try to perform unauthorized activities at unauthorized time on sensitive data. So to prevent the database from any misuse, different security mechanisms are applied to the database to make it secure. This paper focuses on the challenges and security mechanisms in database.

Fianza, 2020

Knowledge and implementation of database security measures is a must, especially today's advanced cyber-attacks. Databases are essential because it helps the different levels of database user's efficiency in saving, updating, retrieving and maintaining those important data. IBM Security reported that data breaches cost is $ 3.86 Million in 2020 and Microsoft is not excused on this attack. In order to prevent or lessen the occurrences of such attacks and breaches, there are several preventive measure that a database administrator should always remember such as observing the access privilege basics, implementing safety measures on the database such as encryption on data objects and the database itself. There are also available models or system such as Fingerprinting Transactions (DIDAFIT); SQL Injection and Insider Misuse Detection System (SIIMDS) and; Misuse Detection System for DBMS.