Securing SQL Server: DBAs Defending the Database

Peter A. Carter

  • 出版商: Apress
  • 出版日期: 2018-11-15
  • 售價: $1,980
  • 貴賓價: 9.5$1,881
  • 語言: 英文
  • 頁數: 368
  • 裝訂: Paperback
  • ISBN: 1484241606
  • ISBN-13: 9781484241608
  • 相關分類: MSSQLSQL資料庫
  • 立即出貨 (庫存=1)



Protect your data from attack by using SQL Server technologies to implement a defense-in-depth strategy for your database enterprise. This new edition covers threat analysis, common attacks and countermeasures, and provides an introduction to compliance that is useful for meeting regulatory requirements such as the GDPR. The multi-layered approach in this book helps ensure that a single breach does not lead to loss or compromise of confidential, or business sensitive data.

Database professionals in today’s world deal increasingly with repeated data attacks against high-profile organizations and sensitive data. It is more important than ever to keep your company’s data secure. Securing SQL Server demonstrates how developers, administrators and architects can all play their part in the protection of their company’s SQL Server enterprise.

This book not only provides a comprehensive guide to implementing the security model in SQL Server, including coverage of technologies such as Always Encrypted, Dynamic Data Masking, and Row Level Security, but also looks at common forms of attack against databases, such as SQL Injection and backup theft, with clear, concise examples of how to implement countermeasures against these specific scenarios. Most importantly, this book gives practical advice and engaging examples of how to defend your data, and ultimately your job, against attack and compromise.

What You'll Learn
  • Perform threat analysis
  • Implement access level control and data encryption
  • Avoid non-reputability by implementing comprehensive auditing
  • Use security metadata to ensure your security policies are enforced
  • Mitigate the risk of credentials being stolen
  • Put countermeasures in place against common forms of attack

Who This Book Is For

Database administrators who need to understand and counteract the threat of attacks against their company’s data, and useful for SQL developers and architects


使用SQL Server技術來實施深度防禦策略,保護您的數據免受攻擊。這本新版書籍涵蓋了威脅分析、常見攻擊和對策,並介紹了合規性,有助於滿足GDPR等法規要求。本書的多層次方法有助於確保單一漏洞不會導致機密或業務敏感數據的損失或危害。

在當今世界中,數據對高知名度組織和敏感數據的重複攻擊越來越多。保護SQL Server展示了開發人員、管理員和架構師如何在保護公司SQL Server企業數據方面發揮各自的作用。

本書不僅提供了實施SQL Server安全模型的全面指南,包括Always Encrypted、Dynamic Data Masking和Row Level Security等技術的介紹,還探討了對數據庫的常見攻擊形式,如SQL注入和備份盜竊,並提供了如何對這些具體情景實施對策的清晰、簡潔的示例。最重要的是,本書提供了實用的建議和引人入勝的例子,教您如何保護數據,最終保護您的工作免受攻擊和危害。

- 進行威脅分析
- 實施訪問級別控制和數據加密
- 通過實施全面的審計來避免不可否認性
- 使用安全元數據確保執行安全策略
- 減輕憑證被盜竊的風險
- 對抗常見攻擊形式的對策

- 需要了解和對抗對公司數據攻擊威脅的數據庫管理員
- 對SQL開發人員和架構師有用