Sicherheit von Datenbanken - ein Framework zur Überprüfung und Bewertung der Sicherheit von relationalen Datenbanken

Dominik Dinulovic
2017 unpublished
The topic of this work is to simulate common database threats on a relational database, with the goal of identifying vulnerabilities. Furthermore, security metrics are used to assess the damage of the executed threats. Confidentiality, integrity and availability are the traditional security goal examples, which are also used in this work. It is necessary to figure out which threat is afflicting damage to which security goal. In this sense it is possible to analyze security goals and if required
more » ... to adapt or enhance them. Security metrics for example support identifying software architecture, security operation, and management vulnerabilities. To achieve effective results, all realized activities need to be measured and evaluated. Therefore, a rating scale can be very effective. The result of this might be weak, average, good or not specified. Throughout the progress of this work, a framework will be implemented. With this framework, the user is able to simulate threats on an Oracle database and afterwards to make an assessment, based on the security metrics. The user has the opportunity to invoke detailed information about the threat that contains the Timestamp, Username or IP-Address.
doi:10.25365/thesis.45969 fatcat:sfpcjmoxnndpzhcvcqjzm26tdm