Abstract
The paper states that organizations depend on distributed information systems for discharging routine business needs. The paper then discusses their susceptibility to security compromises increases, although they achieve output and competence. The paper states that methods like electronic signatures and encryptions are presently accessible for safeguarding data at the time of its transmission. The paper further stresses the importance that a practically broad strategy for data protection should cover methods for putting in place access control policies which are dependent on subject qualifications.

Outline:
Introduction
Most Relevant Concepts Underlying the Notion of Database Security
and the Well Known Techniques
Current Challenges for Database Security and Some Preliminary
approaches that Address Some of Chese Challenges
Access Control Systems, and Description of the Key Access Control
Models, Namely, the Discretionary and Mandatory Access Control
Models, and the Role-based Access Control (RBAC) Model
Additional Recommendations
Conclusion

From the Paper
"Keeping a repository of centralized data is of utmost significance for the information management. Because of this, it is important to build a database concept which outlines the readiness needed for functioning of the database. It must always cover a database security concept that concentrates on the operation of the database. Improper safeguarding of data might compromise database confidentiality, its availability and integrity. In order to prevent this, it is very important to form a comprehensive 'database security' concept. For ensuring the security of a database, an appropriate database management system -- DBMS is required to be functional. For successful protection, the database management system must compulsory fulfill the necessities stated below.''

Tags:database, security, access, control, systems, strategy

Abstract
The paper shows that in today?s fast paced economy and exploding computing infrastructure, database technologies have become the backbone of internet and application services. With adoption of technology comes risk and traditional attacks on security, with databases not being immune. This paper examines some of the risks, strategies and important aspects of database security as it pertains to deployments and Certificate Authorities.

Table of Contents:
Introduction
Nature of Security Issues
Common Attacks
The Threats
The Methods
SQL Server Attacks
SQL Injection Attacks
Oracle Exploits
Prevention
Process over Technology
Best Practices for Protecting Databases
Application Development
Design Considerations for Certificate Authorities
Data Protection
Data Availability
Conclusion
Additional Information
Sample Vulnerabilities
Certificate Authorities
Bibliography

From the Paper
"Introduction The Internet has spawned a breeding ground for web applications and database systems to perform e-commerce, e-banking, and e-government transactions. Database systems have become an integral and required component of the Internet ecosystem to store security sensitive information. Since database systems are now the foundation for all sensitive data operations, database security has become increasingly important in not only e-commerce on the Internet, but also for conducting normal business operations for almost any organization. Compromise of database security poses new business risks not realized before in corporate IT systems."

Tags:password, credit, card, SecurityFocus.com, fraud, Protegrity

Abstract
This paper shows how important database security is for protecting companies against risks, such as cracking, worms, viruses, web site defacement, unauthorized disclosure of confidential information, and more. The paper also outlines the minimum steps that must be taken to ensure effective security against these crimes.

From the Paper
"A recent report by the Computer Security Institute (CSI) and the Federal Bureau of Investigation (FBI) reveals that of 508 companies surveyed, mostly large corporations and government agencies, 90 percent detected computer security breaches within the past twelve months (Savage, 2003). Eighty percent acknowledged financial losses due to these computer breaches. And the 223 respondents that quantified their financial damages suffered a total loss of $456 million. These statistics show the dire need for database security in both large and small companies."

Tags:confidential, access, change, delete, controlled, contents, integrity, consistency

Abstract
This paper explains that database security is the protection of the database against unauthorized access, either intentional or accidental; security countermeasures should combat threats and the outcomes of such threats. The author points out that physical security means that a SQL Server system is running in a controlled-access environment in which only approved personnel have physical access to the system; whereas, appropriate physical security means that SQL Server should be isolated from web infrastructures and direct Internet access. The paper concludes that network and operating system security are not sufficient to defend against dynamic threats to a web application; therefore, database and web application server techniques are a necessity, but even with these extra layers of security in place, there's no such thing as a full-proof security system.

Table of Contents
Introduction
The Goals of Security
Sources of Security Threats
Types of Threats
Common Web Application Security Threats
Physical Security
Security Mechanisms to Protect a Database
Views
Rules and Constraints
Concurrency Control
Audit Tracking
Encryption
Backup and Recovery
SQL Injection Prevention Techniques
Web Securities
Firewall
SSL
Digital Certificate
Conclusion

From the Paper
"Access control prevents unauthorized persons from accessing a system to either obtain information or make changes. Like most databases, Microsoft SQL Server handles access control by allowing the creation of user accounts and passwords to control log-in. Additionally, Microsoft SQL Server supports the use of Windows NT Integrated Security where users are identified to the database by their Windows NT user accounts rather than user ID and password to access the database. Chapple states that this approach offers both the benefit of shifting the burden of account management to the network administration staff and it provides the ease of a single sign-on to the end user."

Tags:protection, unauthorized, controlled-access, windows, firewall

Abstract
This paper outlines some of the security issues that an IT department needs to have in place for their database systems. In today's technology driven world, databases and networks are vital to the furtherance of many business applications and transactions. The paper shows that unfortunately, with the advances in technology, comes the need to protect that technology in as many ways as possible from unauthorized access.

From the Paper
"Database maintenance should include daily remote backup to maintain safe data in case of emergencies. There are many companies that provide remote backup services. Data transfer is usually done after hours through broadband internet connections. This will provide redundancy and remote copies if the main database is ever destroyed or compromised by ill intentioned hackers."

Tags:password, Auditing, Authorization, BS, 7799

From the Paper
" Background
A discussion of computer and database security is presented which discusses internal (employee) and external system security. Secondary issues discussed include hackers, locking devices, passwords, file tampering, costs, and software.

Computer security was first formally addressed by the Department of Defense in 1973 (Schwalls, 1989, p. 122). Increased utilization and dependence upon the computer by business, schools (DeLoughry, 1989, p. 1) and those organizations supporting the defense industry, place computer and database security at a premium. While they are easier to utilize than their predecessors, today's computers are also more vulnerable to unplanned interference. Clearly, a key element of good computer security is the detection and correction of these vulnerabilities.."

Abstract
This paper presents an in-depth discussion of current issues in database administration. In particular, the paper notes the importance of Database Management Systems (DBMS) and the role of the Database Administrator. The paper also discusses the challenges of database security, especially in light of breaches at the social network, Twitter. Additionally, the paper considers the areas of database backup and database recovery. According to the paper, each of these topic areas forms the foundation of a DBAs' many tasks in supporting an organization. The paper further notes the importance of databases in terms of managing strategic concerns relative to the value of data in an organization. Critical success factors essential for the development of effective database management systems including thorough systems analysis and design, the development of security and fault tolerance plans, and the development of change management programs are explored in detail. The paper concludes by addressing database recovery.

Outline:

Introduction
Database Management Systems
DBA Roles and Responsibilities
Database Design Considerations
Database Performance
Database Data Integrity and Availability
Database Security
Database Backup
Database Recovery

From the Paper
"The evolution of databases from simple hierarchical structures to enterprise-wide DBMS platforms parallels their growth from being purely focused on IT tasks to being entirely focused on business and strategic processes and objectives. In order for this transition to occur, databases had to make the transition away from being purely hierarchical in design and adopt a more relational data structure that treated each data element as a logical, not necessarily, physical element of the database (Greene, 2008). In order for databases to become more aligned with the business needs of companies, the shift from hierarchical to relational and objective-based structures began decades ago and continues today. This allows for databases to be structured so they can also support logical table structures, records definitions and the defining of logical connections across multiple databases regardless of their location.
"Corresponding to the growth of relational databases is the increasing sophistication of data modeling (Geiger, 2009) and the continued growth of constraint-based modeling through constraint-based analysis and modeling..."

Tags:Database Management Systems, Database Administrator, database security, Twitter

Abstract
This paper discusses on-line information technology and the problems that exist in database security. It continues to offer solutions to this problem, in discussing legislation, software and hardware to protect information databases from the illegal and malicious threats that effect them.

Database Management Systems
Database Security Policies
System Security Policy
Data Security Policy
User Security Policy
Auditing Policy
Bibliography

From the Paper
"There are many measures and security policies that can be implemented to prevent illegal access to private databases. Typically, every security policy is dependent on the other policies. It is important to note that security policies work best if all the policies embedded within have strong walls against unauthorized access. Otherwise, once one policy fails, there are tendencies that its vulnerability and failure to protect the network, database, or information, can affect the rest of the policies. Following are some of the common policies, as extracted from Oracle Server Administration Guide, that are applied by many organizations which utilize information technology methods for database and information safety and security."

Tags:internet, security, policy, crime, prevention

From the Paper
"DATABASE MANAGEMENT
Executive Summary
This study is an analysis of the trends in database security management, one of the fastest-growing fields of the IT industry. It uses as a guiding precept, an analysis from DBMS magazine that details the unified standards and then analyzes five leading database programs, paying attention to five main programs.
Those programs are:
* IBM DB2
* Informix
* Microsoft SQL Server
* Oracle
* Sybase SQL Server.
This paper compares those five platforms, paying particular attention to their ..."

Abstract
This study will present the negative aspects of computer safety in data central banks, and how there needs to be better protection for information. By observing the elements of this problem, we can learn what forms the weak link in ethical practice in computer technologies.