Seguridad en SQL Server 2012

  • 431 views
Uploaded on

Sesión donde se menciona las características de seguridad en SQL Server 2012.

Sesión donde se menciona las características de seguridad en SQL Server 2012.

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
431
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
0
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. Customer challenges Security featureCONTROL PROTECT DATA Protect data-at-rest Transparent Data Encryption Data/Key separation Extensible Key Managements ACCESS Use strong authentication Kerberos authentication enhancements Monitor all activity SQL Server Audit Change Data CaptureCOMPLIANCE Detect non-compliant Policy-Based ENSURE Management configurations Industry Certification Common Criteria Certification (EAL4+)
  • 2. Default Schema for GroupsUser-Defined Server Roles
  • 3. Default schema = schema1 Group1
  • 4. DBARoleCONTROL ALTER ANY SERVER LOGIN
  • 5. Audit supported on all SKUsImproved ResilienceUser-Defined Audit EventRecord FilteringT-SQL Stack Information
  • 6. SQLServerExpress
  • 7. Select…Rollback
  • 8. exec select salaryhr.viewsalary from hr.payroll hr.viewsalary hr.payroll Audit Log
  • 9. exec sp_audit_write @user_defined_event_id 1234, @succeeded 1, @user_defined_info N‘Hello World’ Audit Log
  • 10. User=Alice; Pwd; IC=NormalDB Login User=Alice; Pwd; IC=CDB Contained (Contained user Alice exists) User User=Alice; Pwd; IC=CDB Login (Contained user Alice does not exist)
  • 11. User=DomainAlice; IC=NormalDB Login User=DomainAlice; IC=CDB Login (Login Alice exists) User=DomainAlice; IC=CDB Contained (Login Alice does not exist) User
  • 12. CREATE CERTIFICATE FROM BYTES4K certificates supported for importSMK/DMK default to AES256Key backups encrypted with AES256SHA2 (256 and 512) supportPassword hashes use SHA512RC4 deprecated
  • 13. SQL Server 2008 Security• SQL Server Database Security and Compliance portal• Understanding SQL Server Audit• Understanding Transparent Data Encryption• Understanding Extensible Key ManagementSQL Server 2012• Security Enhancements• Server Level Roles• Designing and Implementing a Contained DatabaseAdditional Resources• SQL Server Engine Security Blog• SQL Server Security Forum
  • 14. BS GRUPO• www.bsgrupo.comSQL PASS PERU• https://www.facebook.com/#!/groups/sqlpassperu/PASS HQ• www.sqlpass.org
  • 15. http://www.microsoft.com/learning/en/us/certification/cert-sql-server.aspx