Database Security Flashcards
1
Q
What is a Relational Database System?
A
Contains relations or tables
2
Q
What are SQL injections?
A
Typically a script that takes in user input and builds a SQL query from it
User input can contain malicious code or queries
3
Q
What are defenses for SQL injections?
A
- Input checking
- Language features
- Used prepared statements
4
Q
What are inference attacks?
A
Aggregate queries can accidentally reveal sensitive information when the set of tuples selected is too small
5
Q
Inference Attack Defenses
A
Deidentification, anonymization
6
Q
Database Access Control commands
A
GRANT and REVOKE