國立虎尾科技大學 |

Securing SQL Server = DBAs Defending the Database /

紀錄類型:	書目-語言資料,印刷品 : Monograph/item
正題名/作者:	Securing SQL Server/ by Peter A. Carter.
其他題名:	DBAs Defending the Database /
作者:	Carter, Peter A.
面頁冊數:	XVII, 349 p. 91 illus.online resource. :
Contained By:	Springer Nature eBook
標題:	Database management. -
電子資源:	https://doi.org/10.1007/978-1-4842-4161-5
ISBN:	9781484241615

Securing SQL Server = DBAs Defending the Database /
Carter, Peter A.

Securing SQL ServerDBAs Defending the Database /[electronic resource] :by Peter A. Carter. - 2nd ed. 2018. - XVII, 349 p. 91 illus.online resource.

Part I. Database Security -- 1. Threat Analysis and Compliance -- 2. SQL Server Security Model -- 3. SQL Server Audit -- 4. Data-Level Security -- 5. Encryption in SQL Server -- 6. Security Metadata -- 7. Implementing Service Accounts for Security -- 8. Protecting Credentials -- 9. Reducing the Attack Surface.-.-Part II. Threats and Countermeasures -- 10. SQL Injection -- 11. Hijacking an Instance -- 12. Database Backup Theft.-13. Code Injection -- 14. Whole Value Substitution Attacks.

Protect your data from attack by using SQL Server technologies to implement a defense-in-depth strategy for your database enterprise. This new edition covers threat analysis, common attacks and countermeasures, and provides an introduction to compliance that is useful for meeting regulatory requirements such as the GDPR. The multi-layered approach in this book helps ensure that a single breach does not lead to loss or compromise of confidential, or business sensitive data. Database professionals in today’s world deal increasingly with repeated data attacks against high-profile organizations and sensitive data. It is more important than ever to keep your company’s data secure. Securing SQL Server demonstrates how developers, administrators and architects can all play their part in the protection of their company’s SQL Server enterprise. This book not only provides a comprehensive guide to implementing the security model in SQL Server, including coverage of technologies such as Always Encrypted, Dynamic Data Masking, and Row Level Security, but also looks at common forms of attack against databases, such as SQL Injection and backup theft, with clear, concise examples of how to implement countermeasures against these specific scenarios. Most importantly, this book gives practical advice and engaging examples of how to defend your data, and ultimately your job, against attack and compromise. What You'll Learn: Perform threat analysis Implement access level control and data encryption Avoid non-reputability by implementing comprehensive auditing Use security metadata to ensure your security policies are enforced Mitigate the risk of credentials being stolen Put countermeasures in place against common forms of attack.

ISBN: 9781484241615

Standard No.: 10.1007/978-1-4842-4161-5doiSubjects--Topical Terms:

557799
Database management.

LC Class. No.: QA76.9.D3

Dewey Class. No.: 005.74

Securing SQL Server = DBAs Defending the Database /
LDR:03598nam a22004095i 4500 001 987782
003 DE-He213
005 20200630011233.0
007 cr nn 008mamaa
008 201225s2018 xxu| s |||| 0|eng d
020 $a 9781484241615 $9 978-1-4842-4161-5
024 7 $a 10.1007/978-1-4842-4161-5 $2 doi
035 $a 978-1-4842-4161-5
050 4 $a QA76.9.D3
072 7 $a UN $2 bicssc
072 7 $a COM021000 $2 bisacsh
072 7 $a UN $2 thema
072 7 $a UMT $2 thema
082 0 4 $a 005.74 $2 23
100 1 $a Carter, Peter A. $4 aut $4 http://id.loc.gov/vocabulary/relators/aut $3 1070187
245 1 0 $a Securing SQL Server $h [electronic resource] : $b DBAs Defending the Database / $c by Peter A. Carter.
250 $a 2nd ed. 2018.
264 1 $a Berkeley, CA : $b Apress : $b Imprint: Apress, $c 2018.
300 $a XVII, 349 p. 91 illus. $b online resource.
336 $a text $b txt $2 rdacontent
337 $a computer $b c $2 rdamedia
338 $a online resource $b cr $2 rdacarrier
347 $a text file $b PDF $2 rda
505 0 $a Part I. Database Security -- 1. Threat Analysis and Compliance -- 2. SQL Server Security Model -- 3. SQL Server Audit -- 4. Data-Level Security -- 5. Encryption in SQL Server -- 6. Security Metadata -- 7. Implementing Service Accounts for Security -- 8. Protecting Credentials -- 9. Reducing the Attack Surface.-.-Part II. Threats and Countermeasures -- 10. SQL Injection -- 11. Hijacking an Instance -- 12. Database Backup Theft.-13. Code Injection -- 14. Whole Value Substitution Attacks.
520 $a Protect your data from attack by using SQL Server technologies to implement a defense-in-depth strategy for your database enterprise. This new edition covers threat analysis, common attacks and countermeasures, and provides an introduction to compliance that is useful for meeting regulatory requirements such as the GDPR. The multi-layered approach in this book helps ensure that a single breach does not lead to loss or compromise of confidential, or business sensitive data. Database professionals in today’s world deal increasingly with repeated data attacks against high-profile organizations and sensitive data. It is more important than ever to keep your company’s data secure. Securing SQL Server demonstrates how developers, administrators and architects can all play their part in the protection of their company’s SQL Server enterprise. This book not only provides a comprehensive guide to implementing the security model in SQL Server, including coverage of technologies such as Always Encrypted, Dynamic Data Masking, and Row Level Security, but also looks at common forms of attack against databases, such as SQL Injection and backup theft, with clear, concise examples of how to implement countermeasures against these specific scenarios. Most importantly, this book gives practical advice and engaging examples of how to defend your data, and ultimately your job, against attack and compromise. What You'll Learn: Perform threat analysis Implement access level control and data encryption Avoid non-reputability by implementing comprehensive auditing Use security metadata to ensure your security policies are enforced Mitigate the risk of credentials being stolen Put countermeasures in place against common forms of attack.
650 0 $a Database management. $3 557799
650 0 $a Microsoft software. $3 1253736
650 0 $a Microsoft .NET Framework. $3 565417
650 0 $a Computer security. $3 557122
650 1 4 $a Database Management. $3 669820
650 2 4 $a Microsoft and .NET. $3 1114109
650 2 4 $a Systems and Data Security. $3 677062
710 2 $a SpringerLink (Online service) $3 593884
773 0 $t Springer Nature eBook
776 0 8 $i Printed edition: $z 9781484241608
776 0 8 $i Printed edition: $z 9781484241622
776 0 8 $i Printed edition: $z 9781484245811
856 4 0 $u https://doi.org/10.1007/978-1-4842-4161-5
912 $a ZDB-2-CWD
912 $a ZDB-2-SXPC
950 $a Professional and Applied Computing (SpringerNature-12059)
950 $a Professional and Applied Computing (R0) (SpringerNature-43716)