Data Otaku

A seemingly random collection of data- and database-related posts

Posts
  • Data Otaku

    Module Signing Demo

    • 0 Comments
    This post demonstrates the use of module signing to provide controlled access to objects to which a user otherwise does not have permissions. To understand how module signing can be employed to improve the security of database applications, please review...
  • Data Otaku

    Context Switching Demo

    • 0 Comments
    This post demonstrates the use of context switching to provide controlled access to objects to which a user otherwise does not have permissions. To understand how context switching can be employed to improve the security of database applications, please...
  • Data Otaku

    Ownership Chain Demo

    • 0 Comments
    This post demonstrates the use of ownership chains to provide controlled access to objects to which a user otherwise does not have permissions. To understand how ownership chains can be employed to improve the security of database applications, please...
  • Data Otaku

    Application-Specific Endpoint Demo

    • 0 Comments
    This post demonstrates the use of endpoints to secure application connectivity to an instance of SQL Server. The first step in the demonstration is to create two logins to test the functionality of the endpoints. In the code below, I'm using local...
  • Data Otaku

    Assign Minimal Permissions

    • 0 Comments
    Users should be permitted to perform just those operations required within the context of an application and nothing more. Restricting user permissions in this manner limits the potential for inappropriate data access and database actions. With this...
  • Data Otaku

    Secure the Authentication Process

    • 0 Comments
    SQL Server supports two authentication mechanisms: Windows authentication and SQL Server (SQL) authentication. With Windows authentication, SQL Server simply validates a user’s Windows identity with an identity management solution such as Active...
  • Data Otaku

    Harden the Database Server

    • 0 Comments
    Reducing the database server’s exposure to attacks (hardening) is a pretty big task. The physical security of the server along with that of the infrastructure on which it depends must be considered. Then there's the network and the operating system...
  • Data Otaku

    Build Secure Database Applications with Microsoft SQL Server

    • 1 Comments
    The recent spate of breaches and attacks targeting various business and government computing systems drives home the message that our (collective) systems are at risk from threats both internal and external. As a database professional, I'm inclined to...
Page 3 of 3 (58 items) 123