9
Securing MySQL - Arwan Ahmad Khoiruddin, S.Kom., M.Cs.

MySQL Database Security

Embed Size (px)

Citation preview

Page 1: MySQL Database Security

Securing MySQL-

Arwan Ahmad Khoiruddin, S.Kom., M.Cs.

Page 2: MySQL Database Security
Page 3: MySQL Database Security

Sekilas tentang database

● Saat ini, kita selalu berhubungan dengan database, baik secara langsung maupun secara tidak langsung

Page 4: MySQL Database Security

Sekilas tentang database (lanj't)

● Semakin maju sebuah organisasi/negara, semakin banyak berhubungan dengan basis data

● Semakin banyak data yang lalu lalang, semakin butuh jaminan keamanan data

Page 5: MySQL Database Security

Data Security● Tidak semua data boleh dilihat setiap

orang.

● Keamanan data: aman secara fisik dan non-fisik.

● Aman fisik berarti terhindar dari kemungkinan-kemungkinan kerusakan, bencana, kehilangan dsb. (ISO 9001:2008)

● Aman non-fisik → bebas dari tindakan “nakal” akibat adanya system's security vulnerability

Page 6: MySQL Database Security

Vulnerability

● Vulnerable: exposed to being attacked or harmed

(Oxford Dictionary)

● In computer security, the word vulnerability refers to a weakness in a system allowing an attacker to violate the confidentiality, integrity, availability, access control, consistency or audit mechanisms of the system or the data and applications it hosts. Vulnerabilities may result from bugs or design flaws in the system. A vulnerability can exist either only in theory, or could have a known exploit. Vulnerabilities are of significant interest when the program containing the vulnerability operates with special privileges, performs authentication or provides easy access to user data or facilities (such as a network server or RDBMS) (http://dev.mysql.com)

http://dev.mysql.com/
Page 7: MySQL Database Security

Fighting for Better Security(http://dev.mysql.com)

● We do fighting with intruders

● Do not give anyone (except root account) access to the user table in the mysql database.

● Do not grant more previlleges than necessary. Never grant previlleges to all hosts.

● Do not store plain-text password in your database. Instead, use MD5 or other keys.

● Do not choose password from dictionary

http://dev.mysql.com/
Page 8: MySQL Database Security

Fighting for ... (cont'd)

● Invest in firewall● Do not trust any data

entered by user(s) in your application.

● Do not transmit plain-text data over the internet.

● Last but not least: ALWAYS LEARN

Page 9: MySQL Database Security

Matur NuwunSyukron

Thank youArigato Gozaimasu


Database dan MySQL

Database dan MySQL

Technology
MySQL Database Security - Amazon S3 · MySQL History •MySQL was created by a Swedish company, MySQL AB •First release on 05/23/1995, making a 30 year History for MySQL •Version

MySQL Database Security - Amazon S3 · MySQL History •MySQL was created by a Swedish company, MySQL AB •First release on 05/23/1995, making a 30 year History for MySQL •Version

Documents
MySQL - Open Database

MySQL - Open Database

Technology
MySQL Databaseのご紹介 - tokushima-oss.org€¦ · 9 MySQL Enterprise Monitor 2.2 MySQL Cluster 7.1 MySQL Cluster Manager 1.0 MySQL Workbench 5.2 MySQL Database 5.5 MySQL Enterprise

MySQL Databaseのご紹介 - tokushima-oss.org€¦ · 9 MySQL Enterprise Monitor 2.2 MySQL Cluster 7.1 MySQL Cluster Manager 1.0 MySQL Workbench 5.2 MySQL Database 5.5 MySQL Enterprise

Documents
Manajemen Database Mysql

Manajemen Database Mysql

Documents
MySQL DATABASE FUNCTION

MySQL DATABASE FUNCTION

Documents
Database - mysql

Database - mysql

Documents
MySQL Database Administration

MySQL Database Administration

Documents
UFIT Hosting Services · MySQL Database Hosting: MySQL database hosting provides managed MySQL database resources within UFIT’s infrastructure. This will allow your project access

UFIT Hosting Services · MySQL Database Hosting: MySQL database hosting provides managed MySQL database resources within UFIT’s infrastructure. This will allow your project access

Documents
Pengertian Database Mysql

Pengertian Database Mysql

Documents
Modul Database Mysql

Modul Database Mysql

Documents
Database dengan MySQL

Database dengan MySQL

Documents
Pengelolaan Database MySQL Dengan MySQL Workbench

Pengelolaan Database MySQL Dengan MySQL Workbench

Documents
MySQL Database Design

MySQL Database Design

Documents
MySQL Database System

MySQL Database System

Documents
Menampilkan Database Mysql

Menampilkan Database Mysql

Documents
MEMBUAT DATABASE MYSQL

MEMBUAT DATABASE MYSQL

Education
Modern Data Security with MySQL · MySQL Enterprise Transparent Data Encryption 2 Tier Architecture MySQL Database Tablespace Keys MySQL Server Plugin & Services Infrastructure InnoDB

Modern Data Security with MySQL · MySQL Enterprise Transparent Data Encryption 2 Tier Architecture MySQL Database Tablespace Keys MySQL Server Plugin & Services Infrastructure InnoDB

Documents
Pengenalan Database MySQL

Pengenalan Database MySQL

Documents
Database MySQL

Database MySQL

Documents
Guide to MySQL Database Service in Oracle Cloud · The MySQL Database Service in Oracle Cloud Infrastructure (OCI) is the only MySQL database service built on MySQL Enterprise Edition

Guide to MySQL Database Service in Oracle Cloud · The MySQL Database Service in Oracle Cloud Infrastructure (OCI) is the only MySQL database service built on MySQL Enterprise Edition

Documents
MySQL Database Service - Oracle...MySQL Database Service MySQL Database Service Created Date 2/12/2020 4:58:42 PM

MySQL Database Service - Oracle...MySQL Database Service MySQL Database Service Created Date 2/12/2020 4:58:42 PM

Documents
"Comparing Oracle9i Database and MySQL Database Server"

"Comparing Oracle9i Database and MySQL Database Server"

Documents
Configurazione database remoto MySQL - Powerwolf€¦ · database remoto MySQL per l’integrazione di un database MySQL con i nostri prodotti. 2. Introduzione Nelle recenti versioni

Configurazione database remoto MySQL - Powerwolf€¦ · database remoto MySQL per l’integrazione di un database MySQL con i nostri prodotti. 2. Introduzione Nelle recenti versioni

Documents
Database MySQL

Database MySQL

Documents
MySQL Data Security Risk Assessment...Ronald Bradford Principal Database Reliability Engineer MySQL Data Security Risk Assessment June 2018 Database+OperationsConference Barcelona,

MySQL Data Security Risk Assessment...Ronald Bradford Principal Database Reliability Engineer MySQL Data Security Risk Assessment June 2018 Database+OperationsConference Barcelona,

Documents
Security in MySQL - Root-Merepository.root-me.org/Administration/Database/EN - Security in... · Security in MySQL Abstract This is the ... • Ensure that you have adequate and appropriate

Security in MySQL - Root-Merepository.root-me.org/Administration/Database/EN - Security in... · Security in MySQL Abstract This is the ... • Ensure that you have adequate and appropriate

Documents
Oracle Enterprise Manager for MySQL Database 12.1.0.2 · 2016. 7. 27. · 6.5 MySQL Security Standard Rules ..... 85 A Oracle Enterprise Manager for MySQL Database Release Notes

Oracle Enterprise Manager for MySQL Database 12.1.0.2 · 2016. 7. 27. · 6.5 MySQL Security Standard Rules ..... 85 A Oracle Enterprise Manager for MySQL Database Release Notes

Documents
MySQL Developing Database Applications Using MySQL Connector-C++

MySQL Developing Database Applications Using MySQL Connector-C++

Documents
Install MySQL Database

Install MySQL Database

Documents