SSD-3203:Secure Database Development

DescriptionThe course explores in depth SQL language by introducing PL/SQL, database security principles, database auditing, security implementation and database reliability, identifying database vulnerabilities, exploiting flaws to gain control, database assessment, and virtual private database. The following topics are covered: database security, profiles, password policies, privileges and roles, Virtual Private Databases, and auditing. The course also covers advanced topics such as SQL injection, database management security issues such as securing the DBMS, enforcing access controls, and related issues. The course addresses further database security and gives examples of hacking/prevention techniques in different SQL vendors. The student will be provided with the tools, techniques and industry accepted methodologies (e.g. Oracle) to secure organization database. Lecture: 2 hrs/week; tutorial: 2 hrs/week; Lab: 2 hrs/week.