Implementing Database Security and Auditing / Edition 1

Add to Wishlist

ISBN-10:: 1555583342
ISBN-13:: 9781555583347
Pub. Date:: 07/01/2005
Publisher:: Elsevier Science

ISBN-10:: 1555583342
ISBN-13:: 9781555583347
Pub. Date:: 07/01/2005
Publisher:: Elsevier Science

Implementing Database Security and Auditing / Edition 1

Paperback

View All Available Formats & Editions

$82.95

SHIP THIS ITEM
In stock. Ships in 1-2 days.
PICK UP IN STORE

Your local store may have stock of this item.

Available within 2 business hours

$11.58

SHIP THIS ITEM

Temporarily Out of Stock Online

Please check back later for updated availability.
- Condition: Good
Note: Access code and/or supplemental material are not guaranteed to be included with used textbook.

Overview

This book is about database security and auditing. You will learn many methods and techniques that will be helpful in securing, monitoring and auditing database environments. It covers diverse topics that include all aspects of database security and auditing - including network security for databases, authentication and authorization issues, links and replication, database Trojans, etc. You will also learn of vulnerabilities and attacks that exist within various database environments or that have been used to attack databases (and that have since been fixed). These will often be explained to an “internals” level. There are many sections which outline the “anatomy of an attack” – before delving into the details of how to combat such an attack. Equally important, you will learn about the database auditing landscape – both from a business and regulatory requirements perspective as well as from a technical implementation perspective.

* Useful to the database administrator and/or security administrator - regardless of the precise database vendor (or vendors) that you are using within your organization.
* Has a large number of examples - examples that pertain to Oracle, SQL Server, DB2, Sybase and even MySQL..
* Many of the techniques you will see in this book will never be described in a manual or a book that is devoted to a certain database product.
* Addressing complex issues must take into account more than just the database and focusing on capabilities that are provided only by the database vendor is not always enough. This book offers a broader view of the database environment - which is not dependent on the database platform - a view that is important to ensure good database security.

Product Details

ISBN-13:	9781555583347
Publisher:	Elsevier Science
Publication date:	07/01/2005
Edition description:	New Edition
Pages:	432
Product dimensions:	0.88(w) x 7.44(h) x 9.69(d)

About the Author

Ron Ben-Natan is Chief Technical Officer at Guardium, a leader in database and application security. Ron is an expert in the field of application security, database security and enterprise applications. He is also an expert in distributed computing, J2EE applications, and Web services. He has published 9 technical books

including several best-selling WebSphere application server books and over 40 technical articles.

Books published:

CORBA, McGraw Hill, 353pp, 0070054274

Objects on the Web, McGraw Hill, 488pp, 0070062811

CORBA on the Web, McGraw Hill, 432pp, 0070067244

IBM San Francisco Developer’s Guide, McGraw Hill, co-authored with Ori Sasson, 928pp, 0071351779

IBM WebSphere Starter Kit, Osborne/McGraw Hill, co-authored with Ori Sasson, 720pp, 0072124075

Web Applications - Published in Japanese for the Japanese market, co-authored with Ori Sasson

Integrating Service Level Agreements, John Wiley & Sons, co-authored with John Lee, 352pp, 0471210129

IBM WebSphere Application Server - the Complete Reference, Osborne/McGraw Hill, co-authored with Ori Sasson, 997pp, 0072223944

Mastering WebSphere Portal, John Wiley & Sons, co-authored with Richard Gornitsky, Tim Hannis, and Ori Sasson, 552pp, 0764539914

Preface
1. Getting Started
2. Database Security within the General Security
Landscape and a Defense-in-Depth Strategy
3. The Database as a Networked Server
4. Authentication and Password Security
5. Application Security
6. Using Granular Access Control
7. Using the Database To Do Too Much
8. Securing database-to-database communications
9. Trojans
10. Encryption
11. Regulations and Compliance
12. Auditing Categories
13. Auditing Architectures
Index

From the B&N Reads Blog

Page 1 of

Editorial Reviews

"It's been said that everyone has their 15 minutes of fame. You certainly don't want to gain yours by allowing a security breach in your database environment or being the unfortunate victim of one. Information and Data are the currency of On Demand computing, and protecting their integrity and security has never been more important. Ron's book should be compulsory reading for managing and maintaining a secure database environment." Bob Picciano, VP Database Servers, IBM.

"Today, databases house our 'information crown jewels', but database security is one of the weakest areas of most information security programs. With this excellent book, Ben-Natan empowers you to close this database security gap and raise your database security bar!" Bruce W. Moulton. CISO/VP, Fidelity Investments (1995 - 2001)

"Let's start with a simple truth about today's world: If you have a database and you make it available to customers, employees, or whomever over a network, that database will be attacked by hackers — probably sooner rather than later. If you are responsible for that database's security, then you need to read this book. No other single source covers all of the many disciplines and layers involved in protecting exposed databases, and it especially shines in synthesizing all of its concepts and strategies into very practical and specific checklists of things you need to do. I've been an Oracle DBA for 15 years, but I'm not embarrassed to admit that five minutes into Chapter One I was making notes on simple measures I had overlooked." — Charles McClain, Senior Oracle DBA, North River Consulting, Inc.

"In just over 400 pages the author manages to quite thoroughly cover a wide variety of database security topics. Whether you want to learn more about encryption, authentication and password control, or access control, this book provides help." - dbazine.com, Craig Mullins

"I learned some new information that I would not have known if I hadn't been exposed to it by this book." - C.J. Kelly Computerworld

From the Publisher

Implementing Database Security and Auditing / Edition 1

Implementing Database Security and Auditing / Edition 1

Paperback

Temporarily Out of Stock Online

Overview

Product Details

About the Author

Table of Contents

Customer Reviews

Temporarily Out of Stock Online

Overview

Product Details

About the Author

Table of Contents

Related Subjects

Customer Reviews