買這商品的人也買了...
商品描述
Protect your data from attack by using SQL Server technologies to implement a defense-in-depth strategy for your database enterprise. This new edition covers threat analysis, common attacks and countermeasures, and provides an introduction to compliance that is useful for meeting regulatory requirements such as the GDPR. The multi-layered approach in this book helps ensure that a single breach does not lead to loss or compromise of confidential, or business sensitive data.
Database professionals in today’s world deal increasingly with repeated data attacks against high-profile organizations and sensitive data. It is more important than ever to keep your company’s data secure. Securing SQL Server demonstrates how developers, administrators and architects can all play their part in the protection of their company’s SQL Server enterprise.
This book not only provides a comprehensive guide to implementing the security model in SQL Server, including coverage of technologies such as Always Encrypted, Dynamic Data Masking, and Row Level Security, but also looks at common forms of attack against databases, such as SQL Injection and backup theft, with clear, concise examples of how to implement countermeasures against these specific scenarios. Most importantly, this book gives practical advice and engaging examples of how to defend your data, and ultimately your job, against attack and compromise.
- Perform threat analysis
- Implement access level control and data encryption
- Avoid non-reputability by implementing comprehensive auditing
- Use security metadata to ensure your security policies are enforced
- Mitigate the risk of credentials being stolen
- Put countermeasures in place against common forms of attack
Who This Book Is For
Database administrators who need to understand and counteract the threat of attacks against their company’s data, and useful for SQL developers and architects
商品描述(中文翻譯)
保護您的數據免受攻擊,透過使用 SQL Server 技術來實施數據庫企業的深度防禦策略。本新版本涵蓋了威脅分析、常見攻擊及對策,並提供了合規性的介紹,對於滿足如 GDPR 等法規要求非常有用。本書的多層次方法有助於確保單一的安全漏洞不會導致機密或商業敏感數據的損失或洩露。
在當今的世界中,數據庫專業人士越來越多地面對針對高知名度組織和敏感數據的重複數據攻擊。確保公司數據的安全比以往任何時候都更為重要。《Securing SQL Server》展示了開發人員、管理員和架構師如何在保護公司 SQL Server 企業中發揮各自的作用。
本書不僅提供了實施 SQL Server 安全模型的全面指南,包括對 Always Encrypted、Dynamic Data Masking 和 Row Level Security 等技術的介紹,還探討了針對數據庫的常見攻擊形式,如 SQL 注入和備份盜竊,並提供了清晰、簡明的示例,說明如何針對這些特定情境實施對策。最重要的是,本書提供了實用的建議和引人入勝的示例,說明如何保護您的數據,最終保護您的工作,免受攻擊和洩露。
您將學到的內容:
- 執行威脅分析
- 實施訪問級別控制和數據加密
- 通過實施全面的審計來避免不可否認性
- 使用安全元數據來確保您的安全政策得到執行
- 減輕憑證被盜的風險
- 針對常見攻擊形式實施對策
本書適合對象:
需要理解並對抗針對其公司數據的攻擊威脅的數據庫管理員,對 SQL 開發人員和架構師也非常有用。