Chapter 12: SQL and RDBMS Security - SQL Bible [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

SQL Bible [Electronic resources] - نسخه متنی

Alex Kriegel

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Table of Contents

BackCover

SQL Bible

Preface

How This Book Is Organized

Conventions Used in This Book

Acknowledgments

Part I: SQL Basic Concepts and Principles

Chapter 1: SQL and Relational Database Management Systems (RDBMS)

Selecting Your Database Software

Everything in Details: DBMS Implementations

Real-Life Database Examples

Database Legacy

Relational Databases

Object Database and Object-Relational Database Models

Brief History of SQL and SQL Standards

Summary

Chapter 2: Fundamental SQL Concepts and Principles

SQL: The First Look

Any Platform, Any Time

Summary

Chapter 3: SQL Data Types

No Strings Attached

In Numbers Strength

Once Upon a Time: Date and Time Data Types

Object and User-Defined Data Types

Other Data Types

NULL

Summary

Part II: Creating and Modifying Database Objects

Chapter 4: Creating RDBMS Objects

Tables

Indexes

Views

Aliases and Synonyms

Schemas

Other SQL99 and Implementation-Specific Objects

CREATE Statement Cross-Reference

Summary

Chapter 5: Altering and Destroying RDBMS Objects

Tables

Indexes

Views

Aliases and Synonyms

Schemas

Other Implementation-Specific Objects

ALTER and DROP Statements Cross-Reference

Summary

Part III: Data Manipulation and Transaction Control

Chapter 6: Data Manipulation Language (DML)

INSERT: Populating Tables with Data

UPDATE: Modifying Table Data

DELETE: Removing Data from Table

Other SQL Statements to Manipulate Data

Summary

Chapter 7: Sessions, Transactions, and Locks

Sessions

Transactions

Understanding Locks

Summary

Part IV: Retrieving and Transforming Data

Chapter 8: Understanding SELECT Statement

Single Table SELECT Statement Syntax

SELECT Clause: What Do We Select?

FROM Clause: Select from What?

WHERE Clause: Setting Horizontal Limits

GROUP BY and HAVING Clauses: Summarizing Results

ORDER BY Clause: Sorting Query Output

Combining the Results of Multiple Queries

Summary

Chapter 9: Multitable Queries

Inner Joins

Outer Joins: Joining Tables on Columns Containing NULL Values

Joins Involving Inline Views

Multitable Joins with Correlated Queries

Improving Efficiency of Multitable Queries

Summary

Chapter 10: SQL Functions

Summary

Chapter 11: SQL Operators

Arithmetic Operators

Logical Operators

Operator Precedence

Assignment Operator

Comparison Operators

Bitwise Operators

User-defined Operators

Summary

Part V: Implementing Security Using System Catalogs

Chapter 12: SQL and RDBMS Security

Defining a Database User

Managing Security with Privileges

Managing Security with Roles

Using Views for Security

Using Constraints for Security

Using Stored Procedures and Triggers for Security

Database Auditing

Security Standards

Summary

Chapter 13: The System Catalog and INFORMATION_SCHEMA

Oracle 9i Data Dictionary

IBM DB2 UDB 8.1 System Catalogs

Microsoft SQL Server 2000 System Catalog

Summary

Part VI: Beyond SQL--Procedural Programming and Database Access Mechanisms

Chapter 14: Stored Procedures, Triggers, and User-Defined Functions

Procedural Extension Uses and Benefits

Key Elements of a SQL Procedural Language

Stored procedures

User-Defined Functions

Triggers

Summary

Chapter 15: Dynamic and Embedded SQL Overview

SQL Statement Processing Steps

Embedded (Static) SQL

Dynamic SQL Techniques

The Future of Embedded SQL

Summary

Chapter 16: SQL API

Microsoft Open Database Connectivity (ODBC)

Java Database Connectivity (JDBC)

IBM DB2 UDB Call-Level Interface (CLI)

Oracle Call Interface (OCI)

Oracle Objects for OLE (OO4O)

Microsoft Data Access Interfaces

Summary

Chapter 17: New Developments--XML, OLAP, and Objects

XML

OLAP and Business Intelligence

Objects

Summary

Part VII: Appendix

Appendix A: What's on the CD-ROM

Using the CD with Windows

What's on the CD

Troubleshooting

Appendix B: The ACME Sample Database

General Information and Business Rules

Naming Conventions

Relationships Between Tables

Column Constraints and Defaults

Indexes

SQL Scripts to Create ACME Database Objects

Appendix C: Basics of Relational Database Design

Identifying Entities and Attributes

Normalization

Specifying Constraints

Pitfalls of Relational Database Design

Appendix D: Installing RDBMS Software

Installing IBM DB2 UDB 8.1 Personal Edition

Installing Microsoft SQL Server 2000

Appendix E: Accessing RDBMS

Using IBM DB2 UDB 8.1 Command-Line Processor (CLP)

Using Microsoft SQL Server Utilities to Access Database

Appendix F: Installing the ACME Database

Installing the ACME Database on Oracle 9i (Unix/Linux) Using SQL*Plus

Installing the ACME Database on DB2 UDB 8.1 (Windows) Using CLP

Installing ACME Database on Microsoft SQL Server 2000 Using OSQL Utility

Appendix G: SQL Functions

Appendix H: SQL Syntax Reference

DDL Statements

DCL Statements

DML Statements

DQL Statements

Transactional Control Statements

Predicates

Appendix I: SQL-Reserved Keywords

Future Keywords

ODBC Reserved Keywords

Appendix J: SQL99 Major Features Compliance Across Different RDBMS

Appendix K: The Other RDBMS

Appendix L: A Brief Introduction to the Number Systems, Boolean Algebra, and Set Theory

The Number Systems

Logic Elements of Boolean Algebra

Set Theory

Index

Index_A

Index_B

Index_C

Index_D

Index_E

Index_F

Index_G

Index_H

Index_I

Index_J

Index_K

Index_L

Index_M

Index_N

Index_O

Index_P

Index_Q

Index_R

Index_S

Index_T

Index_U

Index_V

Index_W

Index_X

Index_Y

Index_Z

List of Figures

List of Tables

List of Code Examples

List of Sidebars
توضیحات
افزودن یادداشت جدید






Chapter 12: SQL and RDBMS Security

SQL provides
only limited security mechanisms, relying on the software to implement a more
robust security framework. Recognizing this, we've decided to give you a
comprehensive overview of the RDBMS security, in addition to detailed coverage
of SQL specific security statements (both mandated by the SQL99 standard and
vendor-specific implementations).


Basic Security Mechanisms


Database security is an enormous topic, and
exploring the ways in which leading database vendors implemented its various
aspects is even larger. Security was not invented with the relational database;
the password authentication, locks, and other security concepts are as ancient
as human history, and SQL just added a new twist. Following SQL92/99's lead,
all databases essentially comply in establishing the security procedures. There
are three levels of security common to all RDBMS:



Authentication. User connects to the
RDBMS.



Authorization. User gets access to
the database or database schema objects to perform certain actions, based on
the set of privileges assigned to the user.



Auditing. For monitoring suspicious
(and otherwise) activity, and performing postmortem analysis.



What differs is the way each of these
relational database management systems (RDBMS) implement these
levels.


Identification and
authentication


The first line of defense is
authentication. Before you even access RDBMS you must submit sufficient
information validated either by RDBMS itself, or by the operating system within
which this database is installed. Once the identity is authenticated, you may
proceed with the attempt to access the database resources, objects, and
data.


Authorization and access
control


Once the user is authenticated and
granted access to the database, RDBMS employs a complex, finely grained system
of privileges (permissions) for the particular database objects. These
privileges include permission to access, modify, destroy, or execute relevant
database objects, as well as add, modify, and delete data.


Encryption


Encryption provides an additional
security layer, protecting the data from unauthorized viewing. Even if access
to the database is obtained, it will not be easy to decipher encrypted data
into a human readable form.


Integrity and consistency


While security is mostly based on
authentication and authorization procedures, data integrity plays a certain
role in protecting data from unintentional or malicious manipulation. For
example, even if a user gains access to the database (by stealing a password,
for example), s/he still has to follow relational rules for data manipulation,
which, among others, do not allow orphaned records; s/he wont be able to delete
records from a parent table without understanding database relationships
(though some vendors had implemented the CASCADE feature that instructs RDBMS
to remove child records upon deletion of the parent one), won't be able to
insert a duplicate a record into a column protected by the
UNIQUE constraint, or won't be able to
insert invalid data that would violate CHECK constraints.


Auditing


Auditing provides means to monitor
database activity, both legitimate and unauthorized. It preserves the trail of
database access attempts — either successful or failed, data deletions and
inserts (in case one has to find out what had happened), and so on. It is a
necessary component in order to be considered for security certification,
discussed later in the chapter.

/ 207