Call Us: US - +1 845 478 5244 | UK - +44 20 7193 7850 | AUS - +61 2 8005 4826

DBMS Introduction | Set 2 (3-Tier Architecture)

Database security assures the security of databases against threats. It is concerned within information security control that involves the data protection, the database applications or stored functions protection, the database systems protection, the database servers and the associated network links protection. Recently, the security threats in mobile database became popular and need to develop a solution to avoid those threats. Mobile database is a specialized class of distributed systems. Due to hardware constraints and its distributed nature security challenges in mobile development raised. Security should be assured in its operating system, its database and on network. The traditional database security cannot deal malicious attacks by persons with legal entity and is not cost effective to users having different security requirements. The multilayer security model with user, OS, DBMS and transaction level intrusion tolerance integrates redundancy and various technology by adopting integral security strategy and service oriented intrusion tolerance technology. A number of techniques such as encryption and electronic signatures are available to protect data transmission across websites. For data protection enforcement of access control policies based on data contents, subject qualifications and characteristics, and other relevant contextual information, such as time mechanisms are used. Semantics of data considered to specify active access control policies. The network database system provide an open environment for information storage and management with massive data. Great loss will occur once the data loss, illegal tampering or code loss also happens within the network database. The main database security risks are unauthorized or unintended activity or misuse by authorized database users, database administrators, or network or system managers, or by unauthorized users or hackers inappropriate access to sensitive data, metadata or functions within databases, or inappropriate changes to the database programs, structures or security configurations. Also malware infections causing incidents such as unauthorized access, leakage or disclosure of personal or proprietary data, deletion of or damage to the data or programs, interruption or denial of authorized access to the database, attacks on other systems and the unanticipated failure of database services may occur in database.The performance overload constraints and capacity issues resulting in the inability of authorized users to use databases as intended. The physical damage to database servers caused by computer room fires or floods, overheating, lightning, accidental liquid spills, static discharge, electronic breakdowns or equipment failures and obsolescence also contribute as risks. The design flaws and programming bugs in databases and the associated programs and systems, creating various security vulnerabilities for unauthorized privilege escalation, data loss or corruption, performance degradation may occur in databases.Also the data corruption and loss caused by the entry of invalid data or commands, mistakes in database or system administration processes, criminal damage pose security problems in databases.