|
|
Database security
is a system of techniques involved in securing your computer programs (database) against malicious users and unintended activity. As the internet as grown and become more open to everyone, also has database security become more important. Database security generally involves standards of specific controls for the various relevant database platforms. These platforms may link to higher level policies and governmental regulations, as well.
Database security involves several layers of information security. These layers include:
Access Control:
Access control is a system which controls access to certain areas in a computer-based information system. Think of it as a lock on a car door, or a PIN number for access to your bank’s ATM system. Access control is vital when persons try to secure confidential or sensitive information on their database.
Auditing:
Auditing is an evaluation of a person, organization, system, process, enterprise or project. Most people think of an audit in terms of accounting or a tax audit, but it can be used in a web application, as well.
Authentication:
Authentication establishes or confirms that someone or something is true and real according to the claims made by or about the subject. This might involve confirming the legitimacy of a computer program, or assuring that it’s a trusted site.
Encryption:
Encryption is the process of transforming information (generally referred to as “plaintext”) using an algorithm to make it unreadable to anyone except the person possessing special knowledge, or “key” to the information. In reverse, the process of “decryption” is used to make encrypted information readable again.
Integrity:
Integrity refers to the process of ensuring that a database remains accurate to whatever its’ representing. Or, the integrity of the facts stored in the database must accurately model the real world it represents.
|
|
|
