Chapter 4. Database Security

This chapter discusses the following:

  1. Knowledge of external authentication mechanisms (LDAP, active server, etc.)

  2. Ability to implement data encryption

One of the most important responsibilities of the database administrator and the system administrator is database security. Securing your database involves the following activities:

  • Preventing accidental loss of data or data integrity through equipment or system malfunction.

  • Preventing unauthorized access to valuable data.

  • Preventing unauthorized persons from committing mischief through malicious deletion or tampering with data.

  • Monitoring data access by users.

You should start planning for security by:

  • Defining your objectives for a database access control plan.

  • Specifying who shall have access to what and under what circumstances.