Upload File

advanced databases dba: security 1. advanced databases agenda understand the need for security....

  • Home
  • Documents
  • Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions
12
Advanced Databases DBA: Security 1

Upload: kristopher-parrish

Post on 19-Jan-2016

217 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 1

DBA: Security

Page 2: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 2

Agenda

• Understand the need for security.• Learn about System Permissions

and Object permissions.• Understand the purpose of Roles.• Explore Security-focused SQL.

Page 3: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases

Guide to Oracle 10g

3

Data Admin –vs- DB Admin

Data Administration

• Owns the DATA• High-level function• Policy & Procedure

Planning• DBMS independent• Strategic• Maps out Security

Plans

Database Administration

• Owns the Database• Technical function• Policy &Procedure

Enforcement• DBMS dependent• Tactical• Carries out Security

Plans

Page 4: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases

Guide to Oracle 10g

4

Data Admin Matrix

• Data Security documentation tool.• Crafted by DA, Carried out by DBA.

Role Object(s) Permissions

OrderEntry

OrdersOrder Items

Insert, Read

Credit Approval

Customers Update

Page 5: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 5

Security Explained via Cheezy Graphic

UserSystemPrivilege

RoleObject

Page 6: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 6

Specifying System Privileges

• System privilege– Right to perform a specific action– DBA grants system privileges to users or roles– Use System Privileges page in Create User

page

• Object privilege– Associated permissions of an object– DBA or users grant to users or roles

• Admin Option- gives user permissions to grant rights.

Page 7: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 7

System Privileges Reference

http://docs.oracle.com/cd/B28359_01/server.111/b28286/statements_9013.htm#sthref8513

http://docs.oracle.com/cd/B28359_01/server.111/b28286/statements_9013.htm#sthref8513
http://docs.oracle.com/cd/B28359_01/server.111/b28286/statements_9013.htm#sthref8513
http://docs.oracle.com/cd/B28359_01/server.111/b28286/statements_9013.htm#sthref8513
http://docs.oracle.com/cd/B28359_01/server.111/b28286/statements_9013.htm#sthref8513
Page 8: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 8

System Privileges Example

Let’s check out OEM and do a demo.GRANTREVOKE

Page 9: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases

Guide to Oracle 10g

9

Roles

• Special database object • Represents collection of system

privileges • Can be assigned to multiple users• Create role– Can inherit privileges from other roles

• Simpler than assigning system privileges to each user.

Page 10: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 10

Role Examples

Let’s checkout OEM and do a demo.CREATE ROLE

GRANT

Page 11: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 11

Group Activity Data / DB AdminWith Fudgemart

Data Administrator’s Hat• Construct a Data

Administrator’s Matrix of Role, Object(s) and Permissions(s) for Customers on the Fudgemart website.

Database Administrator’s Hat• Carry out the security

role set by the data administrator.

• Write CREATE / GRANT statements to make a role for the WEB user to be included in.

Recall Fudgemart Has: Customers, Employees, Products, Orders, Departments, Vendors, and Timesheets.

Page 12: Advanced Databases DBA: Security 1. Advanced Databases Agenda Understand the need for security. Learn about System Permissions and Object permissions

Advanced Databases 12

Questions


COMP30311: Advanced Database Systems: Object Databases

1 1 1 Berendt: Advanced databases, 2011, berendt/teaching Advanced databases – Large-scale data storage and processing (1):

Distributed Databases – Advanced Concepts

1 1 1 Berendt: Advanced databases, 2009, berendt/teaching Advanced databases – Inferring implicit/new knowledge from data(bases):

6th Sem Advanced Databases

OCR F453 - Advanced Relational Databases

1 Berendt: Advanced databases, 2011, berendt/teaching 1 Advanced databases – Core ideas of federated databases; Schema and ontology

Cs 1006 Advanced Databases

1 Berendt: Advanced databases, first semester 2008, berendt/teaching/2008w/adb/ 1 Advanced databases – Inferring new knowledge

Advanced Databases

1 Berendt: Advanced databases, 1ste semester 2010/2011, berendt/teaching/ 1 Advanced databases – The Semantic Web (1) Bettina

1 Berendt: Advanced databases, first semester 2009, berendt/teaching 1 Advanced databases – Introduction and overview Prof

CSIS 4310 – Advanced Databases Virtual Private Databases

Advanced Databases - Unit 1

Hodder Advanced Databases

CS345: Advanced Databases

1 Berendt: Advanced databases, 1st semester 2012/2013, berendt/teaching/ 1 Advanced databases – Inference on the Semantic Web

CP7211 Advanced Databases Laboratory Manual

Lesson objectives unit 6 advanced databases

CS331: Advanced Database Systems: Object Databases · CS331: Advanced Database Systems: Object Databases ... Advanced data types (spatial, ... Java data objects (JDO):

1 Berendt: Advanced databases, 2009, berendt/teaching 1 Advanced databases – Defining and combining heterogeneous databases:

CIS750 – Seminar in Advanced Topics in Computer Science Advanced topics in databases – Multimedia Databases

1 Advanced Databases – Lecture # 11 Object-Oriented Databases Advanced Databases Object Oriented Databases School of Informatics Akhtar Ali

Advanced Permissions for Magento 2 by Amasty | User Guide

1 Berendt: Advanced databases, 1st semester 2010/2011, berendt/teaching/ 1 Advanced databases – Data and inference (II): Deduction

Advanced Databases - Uni Salzburg

Berendt: Advanced databases, winter term 2007/08, berendt/teaching/2007w/adb/ 1 Advanced databases – Inferring implicit/new

Advanced Employee Permissions - Oracle · Advanced Employee Permissions 1 Advanced Employee Permissions This chapter includes the following help topics: Advanced Employee Permissions

1 Berendt: Advanced databases, first semester 2008, berendt/teaching/2008w/adb/ 1 Advanced databases – Conceptual modelling

Advanced Permissions: Magento Extension by Amasty. User Guide

EPL646 – Advanced Topics in Databases - cs.ucy.ac.cydzeina/courses/epl646/lectures/12.pdf · EPL646: Advanced Topics in Databases ... Lecture 12 Big Data Management II (NoSQL Databases

Advanced databases ben stopford

1 Berendt: Advanced databases, 2012, 1 Advanced databases – Core ideas of federated databases; Schema and ontology

Magento extensions: Advanced permissions user manual by AITOC

Advanced Topics in Databases · Advanced Topics in Databases, 2019/April/05 Otto-von-Guericke University of Magdeburg Advanced Topics in Databases Gunter Saake David Broneske, Gabriel