Database Security Implementation
In Taxation System
Abstract:-
Database warranty plays a critical role in somewhat institution, and it is contribution to harbor data against attackers has become of sense. This is based on database security features. Therefore, this research aims at discursive faculty the practices and true implementation of database confidence to curb security vulnerabilities.
For applying bond features in term of database confidence (e.g., achieving security through, role base avenue control, monitoring, password policy, authentication, encryption).
In this deference, the main object of this be in action is to identify links between database guarantee holes and analysis of security features by stipulation by information technology vendors to diminish the security weaknesses.
In this context, a triangle approach will be used in that quantitative and qualitative data will exist applied through a questionnaire and semi structured interviews to address different horizontal surface of investigation, and to test the validity of this hypothesis.
Key words: database confidence, access, password, monitoring, vulnerabilities.
1. Introduction:-
The implementation, of database surety plays a critical role in mutable computer activities, because database is considered to the degree that a powerful tool that holds and classifies given conditions according to user needs.
Within the propagate of network it is very hazardous environment specially in a situation that the database lacks palladium, according to Evan data (market scrutiny firm in 2002) reported that 10% of database had actual presentation security violation, moreover 40% of banks and financial companies reporting incidents of unauthorized database audience and data corruption. He added that medicinal/health care firms have reported like types of irregularities.
On the other ~writing, the revolution of information technology and conference system have changed the way folks dealing with database (computer ethics) violations.
In recent years, especially many business firms be obliged been using database in Sudan.
The supernatural appearance of implementing database security can gear the maximum security problems all c~ing world. This because the wide use of internet has created a stanch growing community and challenges that exigency database security. This is due to it's rare detecting characteristics.
Thus, the database unmatched system depends on researchers who seeks to sum up a body of knowledge by investigating and reason the practices and implementation of confidence activities to reduce security vulnerabilities through conducting research about implementing database surety in the above titled project.
1.1 Background:-
1.1.1 Database Security
It is a arrangement, process and procedures that protect a database from uncommon activities that can be categorized considered in the state of authentication misuses, malicious attacks or processes. Database guard is also dealing with practices and broader computer bulwark.
Traditional databases have been protected through fire walls and routers on the netting with the database tool existing up~ the internal network which are assigned to subsist located within additional network security that bring to light and alarm if there is at all security hazard from intruders.
Database provides numerous company layers and type of information guarantee including the following:
Access control
Auditing
Authentication
Encryption
Integrity controls
Vulnerability assessment and compliance are also very serious procedures when evaluating database security performed vulnerability assessments for database.
Usually, administrator course the vulnerability scanner on database this step to in order to discover miss configuration of controls within the layers mentioned in heaven a long with known holes in the inside of database software.
This scanning minimizes holes to prevent intruders break into database. In ill-nature of database object including tables , condensed statement links and all these objects be in want of the database administrator for granting permission for all roles.
A familiar hazard study is a better way to be applied in order to determine who has committed crimes and reveals unlawful access to database.
Anyhow, the venture analysis facilitates a better guideline to what one. did you home concerning and concentrating up~ the body database object.
Figure 1.1 shows the database wickedness incidents that had been noticed in Sudan
Figure 1.1: Database crimes
The examination work has proven that no fallen away monitoring database system is still in exercise in Sudan. This is due to the scarce reporting and this limitation is well demonstrated in the Figure 1.2 in the present life
Figure 1.2: Database attacker had been arrested in Sudan
2. The previous studies:-
The literature of review, that relates to this kitchen-yard of investigation covers a wide command of work (in its wider tolerant sense which include: Journals, Academic Books, theses and dissertations, crumbling articles, E-databases, conference papers,…etc.). The careful search studies investigated and covered a spacious rang of Database concept areas, like as: Database security/Oracle certificate company/Relational Database/ Role base access direct / Auditing. The range areas illustrated in Figure2.
Figure 2: database Security tools
The pure objectives of this research are to: be ~ed a model in order to imply and interpret the use of database deposit features by any business firms in Sudan, in turn, this model will lead to the inquiry and analysis of the implementation of database safeguard. Also , by developing this model, the irregularities and miss exercise of database will curbed.
The result of implemented database security tools in taxation apartment demonstrated in Table 1 as shown unworthy of
Table 1: Database Security Tools
4. Research Process:-
The examination process will be conducted through five basic stages (taken in the character of illustrated in Figure3) these stages are: Identification of the investigation problem and objectives, the development of the investigation framework, Research methodology, Quantitative and qualitative given conditions analysis, result of the discussion.
Figure 3: The careful search process
To conclude that with of that kind literature sited and methodology plan that command applied a comprehensive study in deposit database will successfully be worked..
7.1 Research Methodology:-
Nonetheless, concerning the research methods it was cast that the majority of research depended on Questionnaires with a percentage of 60.4 % at the same time that illustrated in Figure 5: 29.6 % applied Interviews, 6 % applied comment and 4 % applied Focus Groups.
Based steady the practical approach, this can exist reaches through examination of different methodologies and approaches employed in antecedent studies and the researchers should take into deliberation the root cause and aim at applying methodologies in a contemporaneous database security.
Generally, there is not at all optimal research methodology or a sweeping approach addresses the database security moot point. This because these previous methodologies or approaches take inconsistencies and drawbacks. But a researcher grape-juice come up with the most appropriate study methodology and techniques to his be in action in light of his research goals. These techniques are shown in Figure 4,5.
Figure 4: Research Methodology Used in Database Security
Figure 5: Research Methodology Used in Database Security
Implementation of database carelessness will provide different characteristics for the unimpaired processes; i,e., it will augment the system of database application and march manipulative practices, therefore, it is considered as very powerful tools that tackle heedlessness problems.
Furthermore, by monitoring suspicious activities and hardening from one side eliminating database holes and applying ease rules to database will afford strenuous well built database.
Database security should have ~ing a contemporary reliable system and from this place any institution in Sudan would subsist advised to apply the database heedlessness in order to protect their knowledge.
Bibliography:-
(1) Introduction To Database System
Author Chris J. Date
Publish age 2000
(2) Database Programming
Author Scott Urman
Publish date 2000
Publisher Brandon A.nordin
(3) Oracle University
Author Mark Sullivan
Publish time (may 1999).
Publisher Kelly Lee, Sherry Polm.
(4) Implementing database shelter
Author Roben Ben Natan
Publish be reckoned 2005
Publisher Elsevier Digital Press
No comments:
Post a Comment