0% found this document useful (0 votes)

36 views30 pages

IT3004 - Operating Systems and Computer Security 07 - Database and Data Mining Security

Database and data mining security involves three key areas: system data security, database security, and data mining security. Database management systems help ensure data integrity, consistency, and access control. Effective security also relies on physical database integrity from failures, logical database integrity to preserve structure, and element integrity to ensure accuracy. Data mining security focuses on analyzing system data to identify patterns related to attacks and inform prevention tools and techniques.

Uploaded by

Maajith Marzook

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

36 views30 pages

IT3004 - Operating Systems and Computer Security 07 - Database and Data Mining Security

Uploaded by

Maajith Marzook

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 30

Database and Data Mining Security

System data

OS data
User data
Application data

Database

Dat
Txt
Log
..

Database Management Systems

Records
Fields, Column
Attribute
Elements

Name
ADAMS
BENCHLY
CARTER

Address
212 Market St.
501 Union St.
411 Elm St.

Location
Columbus
Chicago
Columbus

code Reference
OH
43210
IL
60603
OH
43210

Logical structure Schema

Part of database subschema

Name
ADAMS
ADAMS
BENCHLY
CARTER
CARTER
CARTER
CARTER
CARTER

First
Charles
Edward
Zeke
Marlene
Beth
Ben
Lisabeth
Mary

Address
212 Market St.
212 Market St.
501 Union St.
411 Elm St.
411 Elm St.
411 Elm St.
411 Elm St.
411 Elm St.

City
Columbus
Columbus
Chicago
Columbus
Columbus
Columbus
Columbus
Columbus

Relation is a set of related columns

State
OH
OH
IL
OH
OH
OH
OH
OH

Zip
Airport
43210CMH
43210CMH
60603ORD
43210CMH
43210CMH
43210CMH
43210CMH
43210CMH

Shared access
Many users can use one common, centralized set of data

Minimal redundancy
Individual users do not have to maintain own data
Reduce db size

Data consistency
Change to a data value affects all users of the data value

Data integrity
data are protected against accidental or malicious changes

Controlled access
Authorized users are only allowed to access

Physical database integrity

Data of database are resistant to physical problems
Power failures
Reconstruct
OS protection

Logical database integrity

Structure of the database is preserved
Integrity of a database
Modification of one field does not affect other fields
Authorized individuals

Element integrity

Element are accurate

Field check(numeric, uppercase)
Access control
Change log

Auditability

Track who or what has accessed

Track what actions are performed
Audit record

Access control

Logically separated for users

Allowed to access only authorized data
Different users have deferent access modes

User authentication
Every user is identified

Availability
Users can access the database which they are
authorized
Repaired or upgraded?

Reliability

Dimensions

Execution without failures

Database integrity: Whole DB is protected against damage
Disk failure
DB Corruption
Operating system

Element integrity: Value of a specific data element is

protected
Control unauthorized users
DBMS

Element accuracy: Accuracy of values in elements

Checks the values of elements,
Constraint conditions

OS Protection Features
Backing up
Restore
Access control facilities

DBMS Protection Features

Two phase update

Redundancy/Internal Consistency
Concurrency control/Consistency
Monitor

Two-Phase Update
Failure in the middle of modifying data
1. Intent

DBMS gathers the resources it needs

Open files
Lock other users
Create dummy records

2. Commit
Writing of a commit flag to the database

Redundancy/Consistency
Additional information to detect inconsistencies
Few check bits
Shadow fields

Recovery features
Db reload from backup
Later changes are applied from the audit log

Concurrency/Consistency
Updating in Transactions
Locking(db, table, record, attribute)

Monitor
Responsible for structural integrity of the database
Data type , format, range
Filter

State Constraints

Condition of the entire database

Shouldn't violate
Commit
Primary keys

Transition Constraints
Conditions necessary before changes can be applied to
a database

Sensitivity/Access control
Important
Shouldn't public
DB ,Table ,Record ,Attribute

Access levels - Sensitive level

Access Decisions
Database administrator
Access policy
DBMS

Derive sensitive data from nonsensitive data

Direct Attack
Tries to determine values of sensitive fields
Select from query

Indirect Attack
Release only statistics
Sum, avg

Controls for Statistical Inference Attacks

Query should disclosed sensitive data

Controls
Suppression - sensitive data are not provided
Concealing not the exactly the actual value

Mechanisms
Random Sample check
Query Analysis

Sensitivity
Attribute
Deferent sensitivity levels
Security

Name

Department

Salary

Phone Performance

Rogers
Jenkins
Poling
Garland
Hilten

training
research
training
user services
user services

43,800
62,900
38,200
54,600
44,500

123
345
321
3456
765

A2
D4
B1
A4
B1

Davis

administration

51,400

345

Each individual element

Several grades of security
Security for aggregations deferent attributes

Granularity
Every element of a database have a distinct sensitivity
Every combination of elements have distinct sensitivity

Efficiency
Flexibility
Simplicity
Trustworthiness

Implementation Mechanisms
Partitioning
Encryption
Deferent keys

Integrity Lock
Limited access
Integrity

Implementation Mechanisms
Sensitivity Lock
Separate lock for record
Encrypted
Data item
Sensitivity

Protect data item and its sensitivity

Process efficiency
Encoding
Decoding

Additional space
Untrusted database manager

Trusted front end

Reference monitor
Authenticates the user's identity.
Pass query to the database manager
Pass query Results

Database Manager
I/O access

Commutative Filters
Forms an interface between the user and DBMS
Reformats the query
Improve efficiency

Distributed Databases
Trusted front end controls access
Multiple databases
Complex implementation

View/window
Subset of data
Filtering original DB

Order
Categorize
Search
Patterns
Relations
Summerize
Automated

Analyzing System data

Audit logs

Identify patterns related to attacks

Prevention tools
Prevention techniques

Confidentiality

Commercially sensitive data

Inference
Aggregate may reveal sensitive related information
Data collector can sell to competitors

Availability

Integrity

Combining databases
Structure
Data collector can alter data
Redundancy
Deferent primary keys

Security in Computing Notes Powerpoint Presentation
No ratings yet
Security in Computing Notes Powerpoint Presentation
30 pages
Chapter 4 Database Security
No ratings yet
Chapter 4 Database Security
10 pages
Database & Cloud Security Essentials
No ratings yet
Database & Cloud Security Essentials
60 pages
Database Security Lecture
No ratings yet
Database Security Lecture
45 pages
Lecture 8 Database Security
No ratings yet
Lecture 8 Database Security
4 pages
Database Security Essentials
No ratings yet
Database Security Essentials
26 pages
Lecture 5 - Database - Security
No ratings yet
Lecture 5 - Database - Security
68 pages
Lecture 5 Database Scurity PDF
No ratings yet
Lecture 5 Database Scurity PDF
13 pages
Database Security Essentials
No ratings yet
Database Security Essentials
23 pages
Chapter IV Computer Security
No ratings yet
Chapter IV Computer Security
21 pages
Database Security Essentials
No ratings yet
Database Security Essentials
52 pages
Database Security Essentials
No ratings yet
Database Security Essentials
11 pages
Week 14 - Database Security
No ratings yet
Week 14 - Database Security
32 pages
Lecture 2b
No ratings yet
Lecture 2b
23 pages
Chapter Five Database Secu
No ratings yet
Chapter Five Database Secu
17 pages
Database Integrity and Security Concepts
No ratings yet
Database Integrity and Security Concepts
6 pages
Chp.3 Database Integrity and Security Concepts
No ratings yet
Chp.3 Database Integrity and Security Concepts
26 pages
KFA SCT 115 Security Computing Week 16 Database
No ratings yet
KFA SCT 115 Security Computing Week 16 Database
15 pages
Database Security Essentials Guide
No ratings yet
Database Security Essentials Guide
21 pages
Database Management System DBMS
No ratings yet
Database Management System DBMS
24 pages
Database Security
No ratings yet
Database Security
26 pages
Lecture 7 Database Security
No ratings yet
Lecture 7 Database Security
30 pages
Database Security
No ratings yet
Database Security
19 pages
Chapter 9 - Database Security
No ratings yet
Chapter 9 - Database Security
28 pages
Database Security 1
No ratings yet
Database Security 1
4 pages
DB Theory4
No ratings yet
DB Theory4
6 pages
Lecture 9b - Database Security
No ratings yet
Lecture 9b - Database Security
17 pages
DB Security Lect 1 Part I 2 14
No ratings yet
DB Security Lect 1 Part I 2 14
13 pages
CH 7 Advanced DB
No ratings yet
CH 7 Advanced DB
12 pages
Chapter Seven
No ratings yet
Chapter Seven
12 pages
Computer Security: Principles and Practice
No ratings yet
Computer Security: Principles and Practice
24 pages
Database Security
No ratings yet
Database Security
26 pages
Chapter 2 DB Security
No ratings yet
Chapter 2 DB Security
40 pages
CH-6 Security
No ratings yet
CH-6 Security
42 pages
DBMS Module5
No ratings yet
DBMS Module5
35 pages
KFA SCT 115 Security Computing Week 17 Database Security
No ratings yet
KFA SCT 115 Security Computing Week 17 Database Security
14 pages
Chapter 2
No ratings yet
Chapter 2
41 pages
Database Security for IT Students
No ratings yet
Database Security for IT Students
15 pages
Database Security: Discuss The Above Point
No ratings yet
Database Security: Discuss The Above Point
12 pages
6 Chapter Six
No ratings yet
6 Chapter Six
32 pages
DBMS Chapter 6 Security AB
No ratings yet
DBMS Chapter 6 Security AB
8 pages
ADBS Chapter 6
No ratings yet
ADBS Chapter 6
33 pages
Computer Security: Principles and Practice
No ratings yet
Computer Security: Principles and Practice
30 pages
11 Database Security
No ratings yet
11 Database Security
44 pages
Database Security and Operating System Security: Prof SK
No ratings yet
Database Security and Operating System Security: Prof SK
27 pages
Adb CH3
No ratings yet
Adb CH3
26 pages
Database Security
No ratings yet
Database Security
34 pages
Security Technical Implementation Guide, States That Database Security Should Provide
No ratings yet
Security Technical Implementation Guide, States That Database Security Should Provide
12 pages
Unit5 - Datasecurity
No ratings yet
Unit5 - Datasecurity
23 pages
Dsec - 3100 - Questions, Answers Ai
No ratings yet
Dsec - 3100 - Questions, Answers Ai
10 pages
Security in Computing, Fifth Edition: Chapter 7: Databases
No ratings yet
Security in Computing, Fifth Edition: Chapter 7: Databases
27 pages
2 - T1 - Data Security Intro and DB Access Controls
No ratings yet
2 - T1 - Data Security Intro and DB Access Controls
47 pages
Database Security Lecture2
No ratings yet
Database Security Lecture2
18 pages
Data Integrity
No ratings yet
Data Integrity
7 pages
Unit 5 Dbms Aktu
No ratings yet
Unit 5 Dbms Aktu
26 pages
KKW Unit 5 Database Security
No ratings yet
KKW Unit 5 Database Security
9 pages
ADBMS Chapter 6
No ratings yet
ADBMS Chapter 6
12 pages
Legal Systems Guide
100% (1)
Legal Systems Guide
198 pages
BOQ TONO Detail2
No ratings yet
BOQ TONO Detail2
7 pages
Maajith OnlineBankingSystem
No ratings yet
Maajith OnlineBankingSystem
32 pages
Civil Eng. Training Insights
No ratings yet
Civil Eng. Training Insights
41 pages
Traffic Flow Characteristics On Borella Intersection
100% (1)
Traffic Flow Characteristics On Borella Intersection
1 page
Geo Final
No ratings yet
Geo Final
40 pages
Lec2-Planning The Worksite
No ratings yet
Lec2-Planning The Worksite
33 pages
Tute1 PDF
No ratings yet
Tute1 PDF
1 page
CE 3811 - 2017 - TUTORIAL 1 - SBSA: 2m 1. Dry Sand, G 2.66, e 0.5
No ratings yet
CE 3811 - 2017 - TUTORIAL 1 - SBSA: 2m 1. Dry Sand, G 2.66, e 0.5
1 page
Tutorial 5 2
No ratings yet
Tutorial 5 2
2 pages
Ce 3811 - 2017 - Tutorial 3
No ratings yet
Ce 3811 - 2017 - Tutorial 3
2 pages
Shenal
No ratings yet
Shenal
2 pages
Trapezoidal Rule for Students
No ratings yet
Trapezoidal Rule for Students
16 pages
Task 02 Data For Volume Calculation
No ratings yet
Task 02 Data For Volume Calculation
1 page
Thank You!: Get in Touch With Quickee
No ratings yet
Thank You!: Get in Touch With Quickee
2 pages
Lab Discussions
No ratings yet
Lab Discussions
4 pages
Engineering Lubrication Guide
No ratings yet
Engineering Lubrication Guide
6 pages
Sample Transportation Problems
No ratings yet
Sample Transportation Problems
4 pages
Spherical Roller Bearings
No ratings yet
Spherical Roller Bearings
32 pages
SAP - PS, Budget
100% (4)
SAP - PS, Budget
47 pages
Heal Your Core Wound With Soul Art Journal
No ratings yet
Heal Your Core Wound With Soul Art Journal
17 pages
SPRR Framework PDF
No ratings yet
SPRR Framework PDF
2 pages
Advanced Strength of Materials Prof. S. K. Maiti Department of Mechanical Engineering Indian Institute of Technology, Bombay Lecture - 32
No ratings yet
Advanced Strength of Materials Prof. S. K. Maiti Department of Mechanical Engineering Indian Institute of Technology, Bombay Lecture - 32
17 pages
TMA Quiz Questions
67% (6)
TMA Quiz Questions
12 pages
Ú Ú Úúú CC Ú Úúú Úúú C C Úúú C CC C Ú ÚÚ C Ú ÚÚ CC C ÚÚ CC C Ú ÚÚ C C Úú C Ú Ú ÚÚ C ÚÚ Ú Úú C CC Ú ÚÚ C C CC Ú Úú C
No ratings yet
Ú Ú Úúú CC Ú Úúú Úúú C C Úúú C CC C Ú ÚÚ C Ú ÚÚ CC C ÚÚ CC C Ú ÚÚ C C Úú C Ú Ú ÚÚ C ÚÚ Ú Úú C CC Ú ÚÚ C C CC Ú Úú C
49 pages
The Evolution of Physics
No ratings yet
The Evolution of Physics
17 pages
Michael Salla, Elena Danaan, Commander Thor Han Eredyon - Decimation of The Dark Fleet and The Liberation of Terra, An Nonfiction Galactic Anthology (2021)
No ratings yet
Michael Salla, Elena Danaan, Commander Thor Han Eredyon - Decimation of The Dark Fleet and The Liberation of Terra, An Nonfiction Galactic Anthology (2021)
269 pages
Extended Shear Tab Connections Under Combined Axial and Shear Loading
No ratings yet
Extended Shear Tab Connections Under Combined Axial and Shear Loading
10 pages
Grade 5 q2 Mathematics Las
No ratings yet
Grade 5 q2 Mathematics Las
103 pages
Dimensionless Numbers
No ratings yet
Dimensionless Numbers
13 pages
Economics Day 7
No ratings yet
Economics Day 7
3 pages
Nanotechnology and Construction: Nanoforum Report
No ratings yet
Nanotechnology and Construction: Nanoforum Report
56 pages
Tyranid Invasion Scenario
No ratings yet
Tyranid Invasion Scenario
4 pages
Original Operating Manual HT-S Sintering Furnace HT-S Speed Sintering Furnace
No ratings yet
Original Operating Manual HT-S Sintering Furnace HT-S Speed Sintering Furnace
39 pages
2019C MGMT871002
No ratings yet
2019C MGMT871002
4 pages
Cost Comparison Engage Report Final Version PDF
No ratings yet
Cost Comparison Engage Report Final Version PDF
80 pages
Final Report Askari Bank
No ratings yet
Final Report Askari Bank
117 pages
AWS SDK For Java Developer
No ratings yet
AWS SDK For Java Developer
182 pages
Manual MFD Ingles
No ratings yet
Manual MFD Ingles
451 pages
Ejemplo de Curriculum Vitae
No ratings yet
Ejemplo de Curriculum Vitae
8 pages
Six Sigma - Examskey.lssbb.v2019!03!11.by - Ronnie.182q
No ratings yet
Six Sigma - Examskey.lssbb.v2019!03!11.by - Ronnie.182q
88 pages
MAPEH
No ratings yet
MAPEH
8 pages
Clouds Lesson Plan PDF 2
No ratings yet
Clouds Lesson Plan PDF 2
4 pages
Legal Research Search Techniques
100% (1)
Legal Research Search Techniques
12 pages
Hexagon Mi 454sf Datasheet en
No ratings yet
Hexagon Mi 454sf Datasheet en
5 pages
GRASPS
No ratings yet
GRASPS
1 page

IT3004 - Operating Systems and Computer Security 07 - Database and Data Mining Security

Uploaded by

IT3004 - Operating Systems and Computer Security 07 - Database and Data Mining Security

Uploaded by

Database and Data Mining Security

Database Management Systems

Logical structure Schema

Relation is a set of related columns

Physical database integrity

Logical database integrity

Element are accurate

Track who or what has accessed

Logically separated for users

Execution without failures

Element integrity: Value of a specific data element is

Element accuracy: Accuracy of values in elements

DBMS Protection Features

Two phase update

DBMS gathers the resources it needs

Condition of the entire database

Access levels - Sensitive level

Derive sensitive data from nonsensitive data

Controls for Statistical Inference Attacks

Each individual element

Protect data item and its sensitivity

Trusted front end

Analyzing System data

Identify patterns related to attacks

Commercially sensitive data

You might also like