Current status of R&D in trusted database management systems
ACM SIGMOD Record
CIKM '93 Proceedings of the second international conference on Information and knowledge management
Oracle Security Handbook
Security in Computing
An introduction to multilevel secure relational database management systems
CASCON '04 Proceedings of the 2004 conference of the Centre for Advanced Studies on Collaborative research
Incorporating security components into database courses
Proceedings of the 1st annual conference on Information security curriculum development
DSAC: integrity for outsourced databases with signature aggregation and chaining
Proceedings of the 14th ACM international conference on Information and knowledge management
Database security curriculum in InfoSec program
InfoSecCD '05 Proceedings of the 2nd annual conference on Information security curriculum development
Malware: Fighting Malicious Code
Malware: Fighting Malicious Code
Expanding the database curriculum
Journal of Computing Sciences in Colleges
Incorporating database security courseware into a database security class
Proceedings of the 4th annual conference on Information security curriculum development
Teaching database security and auditing
Proceedings of the 40th ACM technical symposium on Computer science education
| Hi-index | 0.00 |
Traditional Database Security has focused primarily on creating user accounts and managing user privileges to database objects. The wide spread use of databases over the web, heterogeneous client-server architectures, application servers, and networks creates an urgent need to widen this focus. This paper will provide an overview of the new and old database security challenges. Section one provides an overview of the Database Security concerns. It emphasizes Database Applications as the greatest concern and describes the SQL Slammer Worm, an example of not patching the Database Management System (DBMS) The second section explains in detail three Database topics: SQL injection [1], Multilevel Security [2] and Data Warehouse/Data Mining/Statistical security. The reason for focusing on these topics is because they are new Database Security issues (at least not taught in traditional database courses) and they are not topics that student will learn in any other course. The last topic provides guidelines for when to teach each Database Security topic and concludes by emphasizing the need for developing a Database Security Plan. Emphasis on a Database Security Plan resulted from interviewing Database Administrators and Security Specialists.