Information security of corporate databases

Matematičeskie mašiny i sistemy Pub Date : 2023-01-01 DOI:10.34121/1028-9763-2023-3-31-37

Yu.M. Lysetskyi, D.Y. Kalbazov

{"title":"Information security of corporate databases","authors":"Yu.M. Lysetskyi, D.Y. Kalbazov","doi":"10.34121/1028-9763-2023-3-31-37","DOIUrl":null,"url":null,"abstract":"Every day, companies all over the world collect and generate a large amount of data. Now in-formation is digital and is stored in automated digital databases, the use of which allows for processing large amounts of data that previously were difficult to process. Protecting corporate databases and the information within them is essential for economic security. It includes their physical protection, productivity assurance and monitoring, data protection from destruction or damage, access control, and recording of new databases appearing in the infrastructure. Howev-er, since users of different types and levels of access (internal users, system administrators, contractors, partners, and M2M communications) have access to databases, they can abuse their access rights in several ways. These may be an abuse of excessive, objectively necessary, or non-used rights. As a rule, an inefficiently controlled process of granting access rights creates excessive access rights which in turn may cause new information security risks. Security measures include implementing an access management process, granting minimally necessary access rights, and implementing a mechanism to control and block the given access rights. This article discusses such threats to databases as SQL Injections and NoSQL injection attacks, in-sufficient detailing of events in databases, backup leaks, vulnerabilities and configurations, DDoS attacks, and methods to counter these threats. The most effective way to protect data-bases is to implement specialized software and hardware complexes such as Imperva DBS and Imperva WAF developed for database protection. The use of Imperva DBS will help to solve all the key tasks of database protection and provide complete visibility and control over their usage in the enterprise infrastructure.","PeriodicalId":473328,"journal":{"name":"Matematičeskie mašiny i sistemy","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Matematičeskie mašiny i sistemy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.34121/1028-9763-2023-3-31-37","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Every day, companies all over the world collect and generate a large amount of data. Now in-formation is digital and is stored in automated digital databases, the use of which allows for processing large amounts of data that previously were difficult to process. Protecting corporate databases and the information within them is essential for economic security. It includes their physical protection, productivity assurance and monitoring, data protection from destruction or damage, access control, and recording of new databases appearing in the infrastructure. Howev-er, since users of different types and levels of access (internal users, system administrators, contractors, partners, and M2M communications) have access to databases, they can abuse their access rights in several ways. These may be an abuse of excessive, objectively necessary, or non-used rights. As a rule, an inefficiently controlled process of granting access rights creates excessive access rights which in turn may cause new information security risks. Security measures include implementing an access management process, granting minimally necessary access rights, and implementing a mechanism to control and block the given access rights. This article discusses such threats to databases as SQL Injections and NoSQL injection attacks, in-sufficient detailing of events in databases, backup leaks, vulnerabilities and configurations, DDoS attacks, and methods to counter these threats. The most effective way to protect data-bases is to implement specialized software and hardware complexes such as Imperva DBS and Imperva WAF developed for database protection. The use of Imperva DBS will help to solve all the key tasks of database protection and provide complete visibility and control over their usage in the enterprise infrastructure.

查看原文本刊更多论文

企业数据库的信息安全

每天，世界各地的公司都会收集并产生大量的数据。现在信息是数字化的，并存储在自动化的数字数据库中，使用这些数据库可以处理以前难以处理的大量数据。保护公司数据库和其中的信息对经济安全至关重要。它包括它们的物理保护、生产力保证和监控、防止破坏或损坏的数据保护、访问控制和记录基础设施中出现的新数据库。但是，由于具有不同类型和级别访问权限的用户(内部用户、系统管理员、承包商、合作伙伴和M2M通信)可以访问数据库，因此他们可以通过多种方式滥用访问权限。这些可能是滥用过度的、客观上必要的或未使用的权利。通常，如果访问权限的授予过程控制不力，就会产生过多的访问权限，从而可能造成新的信息安全风险。安全措施包括实现访问管理流程、授予最低限度的必要访问权限，以及实现控制和阻止给定访问权限的机制。本文讨论了SQL注入和NoSQL注入攻击等对数据库的威胁，详细介绍了数据库中的事件、备份泄漏、漏洞和配置、DDoS攻击以及应对这些威胁的方法。保护数据库的最有效方法是实现专门的软件和硬件组合，例如为数据库保护而开发的Imperva DBS和Imperva WAF。使用Imperva DBS将有助于解决数据库保护的所有关键任务，并对它们在企业基础设施中的使用提供完整的可见性和控制。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Matematičeskie mašiny i sistemy

自引率

0.00%

发文量