etc research paper wk10

profilekart2020
OriginalityReport.pdf

7/15/2020 Originality Report

https://ucumberlands.blackboard.com/webapps/mdb-sa-BB5a31b16bb2c48/originalityReport/ultra?attemptId=f3cdb6d0-a43c-458b-9e86-cce5b263873… 1/4

%16

%9

%2

%2

SafeAssign Originality Report Summer 2020 - Emerging Threats & Countermeas (ITS-834-22) - Full … • Week 10 Research Paper

%28Total Score: Medium risk Karthik Reddy Yakkati

Submission UUID: 26697744-4241-63c7-4649-84abf71f583c

Total Number of Reports

1 Highest Match

28 % EtcResearchPaperweek10.docx

Average Match

28 % Submitted on

07/11/20 04:12 PM EDT

Average Word Count

1,282 Highest: EtcResearchPaperweek10.docx

%28Attachment 1

Institutional database (3)

Student paper Student paper Student paper

Global database (3)

Student paper Student paper Student paper

Scholarly journals & publications (1)

ProQuest document

Internet (1)

paperap

Top sources (3)

Excluded sources (0)

View Originality Report - Old Design

Word Count: 1,282 EtcResearchPaperweek10.docx

2 6 7

3 4 5

8

1

2 Student paper 3 Student paper 6 Student paper

DATABASE SECURITY MANAGEMENT 2

DATABASE SECURITY MANAGEMENT 2

Database Security Management Karthik Reddy Yakkati

003019712

University of The Cumberlands

7/11/2020

Database Security Management Introduction

In the contemporary world, information is among the most critical resources in modern enterprises. Information stored in databases is regarded as a valuable asset from a cooperate perspective (Malik & Patel, 2016). Therefore, the security of this information remains paramount and a vital requirement when dealing with database management. Databases comprise data and information with varying degrees of significance. Some data might be more important than the other. I f ti i h d t l tti th it f d t t i k Thi ll f th d ti f t t i th h hi h h i f ti b

1

2

7/15/2020 Originality Report

https://ucumberlands.blackboard.com/webapps/mdb-sa-BB5a31b16bb2c48/originalityReport/ultra?attemptId=f3cdb6d0-a43c-458b-9e86-cce5b263873… 2/4

Source Matches (16)

Information is shared amongst many people, putting the security of data at risk. This calls for the adoption of strategies through which such information can be safeguarded, and the number of people who can access the information can be limited. Since database security is an issue affected by other internal and external factors, it cannot be isolated (Mousa, Karabatak & Mustafa, 2020). To handle it, many other things need to be addressed. "As the organizations increase their

adoption of database systems as the key data management technology for day-to-day operations and decision making, the security of data becomes crucial.” In this light, this paper will examine strategic and technical database security measures. The paper will further discuss the Clark and Wilson model of developing databases for organizational security. Strategic and Technical Database Security Measures

Database security requires vast experience to uphold the security of the sensitive data and information stored. Current knowledge about cybersecurity is also essential as new threats emerge every day. The following are some of the golden strategic and technical database security measures. The first one is the

separation of web servers from standard servers. Database servers need to be kept and handled separately from the web servers (Malik & Patel, 2016). Keeping them apart increases cybersecurity of the database and the website in a manner that even if hackers manage to access web server admin, they are not capable of accessing database servers. An application that is not a must for the servers to operate should be kept out of the servers. They can also be used as loopholes through which the hackers can find their way into the information protected. Secondly, all files, together with their backups, should be encrypted. Regardless of how robust database defenses are, hackers’ chances infiltrate typically into the system. It is worth understanding that cybercriminals are not the only threats to data security. Some employees might be thinking other ways about the information available (Kothari, Suwalka & Kumar, 2016). Encrypting data and storing it in an unreadable form towards employees and hackers creates the final and most secure line of defense against any intruders finding their way into the system. The third measure is regularly updating patches. Database commonly uses plugins and widgets in their operations. These are the significant roadmaps that the cybercriminals use in bypassing existing database security. This route tends to be simpler for hackers when the patches are not updated. Even though the internal defenses are strong, failure to update the database patches makes them vulnerable (Kothari, Suwalka & Kumar, 2016). Running updates regularly enhances the security in them and hence, keeping intruders far away. The fourth measure is a regular audit of the database to check the degree of security in place. When databases hold highly sensitive information like consumer credit, hackers make such databases their primary targets (Mousa, Karabatak & Mustafa, 2020). Once it is felt that all security measures have been implemented, testing the security should begin (Kothari, Suwalka & Kumar, 2016). This can be done by self-hacking or auditing the database to identify potential loopholes through which hackers can find their way into the system. Successful hacking of the system implies that database security is not strong enough. The last measure is ensuring the security control of database servers are at their maximum. There is a need to ensure that the latest version of the database is in use. Having the lasts version helps minimize the existing software vulnerabilities. Security measures and control protocols always remain at par (Mousa, Karabatak & Mustafa, 2020). This also needs to be associated with a regular update of passwords and changing the default passwords. This will ensure that unauthorized or old users do not win access to databases. Database Security Model

Clark and Wilson model This is among the best security models who uphold integrity.

Figure 1:The Clark-Wilson Model

Figure 2:Clark and Wilson model scientific diagram

This model was summarized and contrasted to MAC in 1987 by Clark and Wilson. The approach of the model was developed for the pencil and paper world. The model was aimed at addressing several security constraints using an informative transaction and the principle of separation of duties (Pernul, 1994).

3

2

2

3

1

When these principles are transferred to the database security management, they are interpreted as follows. Security subjects: These are assigned according to the roles people have. Users are classified according to their roles in the organization. User roles define the functions they are entitled to. Each role of the user is mapped into the database at an ideal time, and the user is allowed only to play one role at a time. Wilson and Clark permit authorized users to access data alone (Pernul, 1994). Well-formed transaction: This is a type of transaction that operates on an assigned group of data on the condition that all relevant security measures and integrity hold and that are satisfied. Pernul (1994) points out that "they should provide logging and atomicity and serializability of resulting sub-transactions.” Throughout the model, data elements referenced by the transactions usually are generally not specified. Hence, the model rejects ad-oc database queries. Separation of duties: The principle of separation of duties demands that every set of users be assigned a unique set of responsibilities according to the role the users are assigned in the organization. This leaves out only one way through data that could be accessed. This is through the user role in the organization. In case a given user needs more information, another user in a different role comes in, forming a transactional domain temporarily to win information (Pernul, 1994). Conclusion In conclusion, the value with which data stored in the database hold is directly proportional to the level of security adopted. In the contemporary world, databases have been regarded as valuable assets of the cooperating organizations. This is regardless of the type of enterprise in place. Measures through which database security can be upheld include the separation of web servers, all files together with their backups should be encrypted, regularly updating patches, regular audit of the database to check the degree of the security in place and ensuring the security control of database servers are at their maximum. Clark and Wilson's model serves to ensure the integrity of the databases.

References

Kothari, H., Suwalka, A. K., & Kumar, D. (2019). Various Database Attacks, Approaches, and Countermeasures To Database Security. International Journal of

Advanced Research in Computer Science and Management, 357-362.

https://www.researchgate.net/profile/Sunil_Kumar603/publication/332441686_Various_Database_Attacks_Approaches_and_Countermeasures_To_Database_Security/l inks/5cb5a72792851c8d22ee43f7/Various-Database-Attacks-Approaches-and-Countermeasures-To-Database-Security.pdf

Malik, M., & Patel, T. (2016). Database security attacks and control methods. International Journal of Information, 6(1/2), 175-183.

https://pdfs.semanticscholar.org/9c9a/d8150e8ddf7427ea2a53482ef106bc324e72.pdf Mousa, A., Karabatak, M., & Mustafa, T. (2020, June). Database Security

Threats and Challenges. In 2020 8th International Symposium on Digital Forensics and Security (ISDFS) (pp. 1-5). IEEE.

https://ieeexplore.ieee.org/abstract/document/9116436/ Pernul, G. (1994). Database security. In Advances in Computers (Vol. 38, pp. 1-72). Elsevier.

https://www.sciencedirect.com/science/article/pii/S0065245808601758

2 2

4

2 2 5

6

7

8

7/15/2020 Originality Report

https://ucumberlands.blackboard.com/webapps/mdb-sa-BB5a31b16bb2c48/originalityReport/ultra?attemptId=f3cdb6d0-a43c-458b-9e86-cce5b263873… 3/4

paperap 75%

Student paper 83%

Student paper 81%

Student paper 86%

Student paper 65%

Student paper 69%

paperap 67%

Student paper 100%

Student paper 100%

Student paper 67%

1

Student paper

DATABASE SECURITY MANAGEMENT 2 DATABASE SECURITY MANAGEMENT 2

Original source

Database Security Models 2 Database Security Models 2

2

Student paper

University of The Cumberlands 7/11/2020

Original source

University of the Cumberlands July 11, 2020

3

Student paper

"As the organizations increase their adoption of database systems as the key data management technology for day-to- day operations and decision making, the security of data becomes crucial.” In this light, this paper will examine strategic and technical database security measures.

Original source

As the organizations increase their adoption of database systems as the key data management technology for day-to- day operations and decision making, the security of data becomes crucial

2

Student paper

Strategic and Technical Database Security Measures

Original source

Strategic and Technical Security Measures

2

Student paper

The following are some of the golden strategic and technical database security measures.

Original source

Strategic and Technical Security Measures for Good Database Security

3

Student paper

Database Security Model

Original source

Security Model Based on Database Roles

1

Student paper

Figure 2:Clark and Wilson model scientific diagram

Original source

5 Clark and Wilson Model 2

2

Student paper

Kothari, H., Suwalka, A. K., & Kumar, D.

Original source

Kothari, H., Suwalka, A K., & Kumar, D

2

Student paper

Various Database Attacks, Approaches, and Countermeasures To Database Security. International Journal of Advanced Research in Computer Science and Management, 357-362.

Original source

Various Database Attacks, Approaches, and Countermeasures to Database Security International Journal of Advanced Research in Computer Science and Management, 357-362

4

Student paper

https://www.researchgate.net/profile/Su nil_Kumar603/publication/332441686_Va rious_Database_Attacks_Approaches_and _Countermeasures_To_Database_Securit y/links/5cb5a72792851c8d22ee43f7/Vari ous-Database-Attacks-Approaches-and- Countermeasures-To-Database- Security.pdf

Original source

Retrieved from https://www.researchgate.net/publicatio n/332441686_Various_Database_Attacks_ Approaches_and_Countermeasures_To_ Database_Security

7/15/2020 Originality Report

https://ucumberlands.blackboard.com/webapps/mdb-sa-BB5a31b16bb2c48/originalityReport/ultra?attemptId=f3cdb6d0-a43c-458b-9e86-cce5b263873… 4/4

Student paper 100%

Student paper 100%

Student paper 75%

Student paper 97%

Student paper 69%

ProQuest document 85%

2

Student paper

Malik, M., & Patel, T.

Original source

Malik, M., & Patel, T

2

Student paper

Database security attacks and control methods. International Journal of Information, 6(1/2), 175-183.

Original source

Database security attacks and control methods International Journal of Information, 6(1/2), 175-183

5

Student paper

https://pdfs.semanticscholar.org/9c9a/d8 150e8ddf7427ea2a53482ef106bc324e72. pdf Mousa, A., Karabatak, M., & Mustafa, T.

Original source

https://pdfs.semanticscholar.org/9c9a/d8 150e8ddf7427ea2a53482ef106bc324e72. pdf

6

Student paper

Database Security Threats and Challenges. In 2020 8th International Symposium on Digital Forensics and Security (ISDFS) (pp.

Original source

Database security threats and challenges 2020 8th International Symposium on Digital Forensics and Security (ISDFS)

7

Student paper

https://ieeexplore.ieee.org/abstract/docu ment/9116436/ Pernul, G.

Original source

Retrieved from https://ieeexplore.ieee.org/abstract/docu ment/8029979

8

Student paper

https://www.sciencedirect.com/science/a rticle/pii/S0065245808601758

Original source

https://www.sciencedirect.com/science/a rticle/pii/S1514032616300095]