Available:*
Library | Item Barcode | Call Number | Material Type | Item Category 1 | Status |
|---|---|---|---|---|---|
Searching... | 30000004581207 | QA76.9.A25 B46 2005 | Open Access Book | Book | Searching... |
On Order
Summary
Summary
This book is about database security and auditing. You will learn many methods and techniques that will be helpful in securing, monitoring and auditing database environments. It covers diverse topics that include all aspects of database security and auditing - including network security for databases, authentication and authorization issues, links and replication, database Trojans, etc. You will also learn of vulnerabilities and attacks that exist within various database environments or that have been used to attack databases (and that have since been fixed). These will often be explained to an "internals" level. There are many sections which outline the "anatomy of an attack" - before delving into the details of how to combat such an attack. Equally important, you will learn about the database auditing landscape - both from a business and regulatory requirements perspective as well as from a technical implementation perspective.
Author Notes
Ron Ben-Natan is Chief Technical Officer at Guardium, a leader in database and application security. Ron is an expert in the field of application security, database security and enterprise applications. He is also an expert in distributed computing, J2EE applications, and Web services. He has published 9 technical books
including several best-selling WebSphere application server books and over 40 technical articles.
Books published:
CORBA, McGraw Hill, 353pp, 0070054274
Objects on the Web, McGraw Hill, 488pp, 0070062811
CORBA on the Web, McGraw Hill, 432pp, 0070067244
IBM San Francisco Developer's Guide, McGraw Hill, co-authored with Ori Sasson, 928pp, 0071351779
IBM WebSphere Starter Kit, Osborne/McGraw Hill, co-authored with Ori Sasson, 720pp, 0072124075
Web Applications - Published in Japanese for the Japanese market, co-authored with Ori Sasson
Integrating Service Level Agreements, John Wiley & Sons, co-authored with John Lee, 352pp, 0471210129
IBM WebSphere Application Server - the Complete Reference, Osborne/McGraw Hill, co-authored with Ori Sasson, 997pp, 0072223944
Mastering WebSphere Portal, John Wiley & Sons, co-authored with Richard Gornitsky, Tim Hannis, and Ori Sasson, 552pp, 0764539914
Table of Contents
| Preface |
| 1 Getting Started |
| 2 Database Security within the General Security Landscape and a Defense-in-Depth Strategy |
| 3 The Database as a Networked Server |
| 4 Authentication and Password Security |
| 5 Application Security |
| 6 Using Granular Access Control |
| 7 Using the Database To Do Too Much |
| 8 Securing database-to-database communications |
| 9 Trojans |
| 10 Encryption |
| 11 Regulations and Compliance |
| 12 Auditing Categories |
| 13 Auditing Architectures |
| Index |
