Mitigating SQL Attacks on Enterprise Database

Abstract

In today’s world, data is generated at a very rapid speed and final destination of such data is the database. Database security
assures the security of the information stored in the database against threats, be it insider or outsider threats. Data is stored in the database for easy and efficient way to manage these data. Considering the importance of data in an organization, it is
absolutely essential to secure the data stored in the database. A secure database is one which is shielded from different possible
attacks. For data protection, enforcement of access control policies based on data contents, subject qualifications and characteristics and other relevant contextual information, such as time mechanisms are used. Security models are required in the
design and development of effective and efficient database systems. In this work, some of the attacks and threats that are
encountered in database systems and the corresponding counter-measures, as well control methods were discussed. Ensuring
security for database is a very critical issue for companies. Hence as the complexity of database increases, we may tend to have
more complex security issues of database. The effectiveness of the developed system in protecting data stored in a database was
demonstrated by attempting some attacks on the database. The system was able to thwart the attacks.