By
Ron Ben Natan, Ron Ben Natan is CTO at Guardium, a leader in database security and auditing. Prior to Guardium Ron worked for companies such as Intel,
AT&T Bell Laboratories, Merrill Lynch, J.P. Morgan and ViryaNet. He holds a Ph.D. in the field of distributed computing from the
University of Jerusalem. Ron is an expert on the subject of distributed application environments, application security and database security
and has authored nine technical books and numerous articles on these topics.
Description
This book is about database security and auditing. You will learn many methods and techniques that will be helpful in securing, monitoring
and auditing database environments. It covers diverse topics that include all aspects of database security and auditing - including network
security for databases, authentication and authorization issues, links and replication, database Trojans, etc. You will also learn of
vulnerabilities and attacks that exist within various database environments or that have been used to attack databases (and that have
since been fixed). These will often be explained to an “internals” level. There are many sections which outline the “anatomy of an attack”
– before delving into the details of how to combat such an attack. Equally important, you will learn about the database auditing landscape
– both from a business and regulatory requirements perspective as well as from a technical implementation perspective.
Audience:
* Information Security Officers, security administrators and auditors - defining, implementing and enforcing security and audit policies
and methods.* DBAs - tasked with securing the database environment, setting up user and application access to the database,
setting up database access policies, auditing data access etc. * Application developers - designing and developing security
features for applications* Operations groups - implementing and administering application environments (both custom and
off-the-shelf suites).
