MALAYSIAN INSTITUTE OF INFORMATION TECHNOLOGY
UNIVERSITI KUALA LUMPUR
Assignment
Session January 2012
IKB10103 INFORMATION SECURITY
Date Submission: 6 feb 2012
Prepared By:
Prepared For:
MADAM HERNY RAMADHANI BT MOHD HUSNY
Table of Content
Content
Pages
Introduction
Database Communication Vulnerabilities
Weak Authentication
Backup Data Exposure
Summary
Reference
Introduction
Database Communication Protocol Vulnerabilities
A rising number of security weaknesses are being identified in the database communication protocols of all database vendors. What happens is that, vendor relies heavily on proprietary network protocol to communicate data and commands. Therefore, they tend to create out complex and mostly obscure protocols are prone to security vulnerabilities .4 out of 7 security fixes address protocol vulnerabilities.
Definition :
Tampering with Database related network protocol messages.
Effects :
1) Causes Unauthorized Data Access and Manipulation
2) Denial Of Service
Mitigation :
1) Technology such as protocol validation helps dissembles database traffic and compares it to expectation. A block/ alerts may be taken if such live traffic does not match the expectation. This causes only normal client generated message to enter.
2) Technology such as reactive validation also has the basis of protocol validation. But its only effective to address known to the user. It will check for the specific known attacks and react quickly to it such as alerts or block.
Weak Authentication
Weak authentication will allow attackers to assume the identity of legitimate database users by stealing or otherwise obtaining login credentials by any means necessary. An attacker may employ any number of strategies to obtain ways to get into the database.... [continues]
UNIVERSITI KUALA LUMPUR
Assignment
Session January 2012
IKB10103 INFORMATION SECURITY
Date Submission: 6 feb 2012
Prepared By:
Prepared For:
MADAM HERNY RAMADHANI BT MOHD HUSNY
Table of Content
Content
Pages
Introduction
Database Communication Vulnerabilities
Weak Authentication
Backup Data Exposure
Summary
Reference
Introduction
Database Communication Protocol Vulnerabilities
A rising number of security weaknesses are being identified in the database communication protocols of all database vendors. What happens is that, vendor relies heavily on proprietary network protocol to communicate data and commands. Therefore, they tend to create out complex and mostly obscure protocols are prone to security vulnerabilities .4 out of 7 security fixes address protocol vulnerabilities.
Definition :
Tampering with Database related network protocol messages.
Effects :
1) Causes Unauthorized Data Access and Manipulation
2) Denial Of Service
Mitigation :
1) Technology such as protocol validation helps dissembles database traffic and compares it to expectation. A block/ alerts may be taken if such live traffic does not match the expectation. This causes only normal client generated message to enter.
2) Technology such as reactive validation also has the basis of protocol validation. But its only effective to address known to the user. It will check for the specific known attacks and react quickly to it such as alerts or block.
Weak Authentication
Weak authentication will allow attackers to assume the identity of legitimate database users by stealing or otherwise obtaining login credentials by any means necessary. An attacker may employ any number of strategies to obtain ways to get into the database.... [continues]
Cite This Essay
- APA
-
(2012, 03). Information Security. StudyMode.com. Retrieved 03, 2012, from http://www.studymode.com/essays/Information-Security-950697.html
- MLA
-
"Information Security" StudyMode.com. 03 2012. 03 2012 <http://www.studymode.com/essays/Information-Security-950697.html>.
- CHICAGO
-
"Information Security." StudyMode.com. 03, 2012. Accessed 03, 2012. http://www.studymode.com/essays/Information-Security-950697.html.
