Seguridad en SQL Server 2012

740 views

Published on

Sesión donde se menciona las características de seguridad en SQL Server 2012.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
740
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Seguridad en SQL Server 2012

  1. 1. Customer challenges Security featureCONTROL PROTECT DATA Protect data-at-rest Transparent Data Encryption Data/Key separation Extensible Key Managements ACCESS Use strong authentication Kerberos authentication enhancements Monitor all activity SQL Server Audit Change Data CaptureCOMPLIANCE Detect non-compliant Policy-Based ENSURE Management configurations Industry Certification Common Criteria Certification (EAL4+)
  2. 2. Default Schema for GroupsUser-Defined Server Roles
  3. 3. Default schema = schema1 Group1
  4. 4. DBARoleCONTROL ALTER ANY SERVER LOGIN
  5. 5. Audit supported on all SKUsImproved ResilienceUser-Defined Audit EventRecord FilteringT-SQL Stack Information
  6. 6. SQLServerExpress
  7. 7. Select…Rollback
  8. 8. exec select salaryhr.viewsalary from hr.payroll hr.viewsalary hr.payroll Audit Log
  9. 9. exec sp_audit_write @user_defined_event_id 1234, @succeeded 1, @user_defined_info N‘Hello World’ Audit Log
  10. 10. User=Alice; Pwd; IC=NormalDB Login User=Alice; Pwd; IC=CDB Contained (Contained user Alice exists) User User=Alice; Pwd; IC=CDB Login (Contained user Alice does not exist)
  11. 11. User=DomainAlice; IC=NormalDB Login User=DomainAlice; IC=CDB Login (Login Alice exists) User=DomainAlice; IC=CDB Contained (Login Alice does not exist) User
  12. 12. CREATE CERTIFICATE FROM BYTES4K certificates supported for importSMK/DMK default to AES256Key backups encrypted with AES256SHA2 (256 and 512) supportPassword hashes use SHA512RC4 deprecated
  13. 13. SQL Server 2008 Security• SQL Server Database Security and Compliance portal• Understanding SQL Server Audit• Understanding Transparent Data Encryption• Understanding Extensible Key ManagementSQL Server 2012• Security Enhancements• Server Level Roles• Designing and Implementing a Contained DatabaseAdditional Resources• SQL Server Engine Security Blog• SQL Server Security Forum
  14. 14. BS GRUPO• www.bsgrupo.comSQL PASS PERU• https://www.facebook.com/#!/groups/sqlpassperu/PASS HQ• www.sqlpass.org
  15. 15. http://www.microsoft.com/learning/en/us/certification/cert-sql-server.aspx

×