Question
2. The need for database security is due to the fact that organisational databases concentrate sensitive information in a single logical system. a) Explain
2. The need for database security is due to the fact that organisational databases concentrate sensitive information in a single logical system. a) Explain how Attribute Based Access Control can be used to enforce Database Security. Justify your answer with an example. [15 marks] b) Explain how malicious code could be injected into a cookie to perform SQLi attacks. [10 marks] c) Are SQLi attacks covered by the Computer Misuse Act 1990? Justify your answer. [10 marks] d) Explain how the Plan-Do-Check-Act process model can be used to manage database security risk. [15 marks]
Step by Step Solution
3.44 Rating (125 Votes )
There are 3 Steps involved in it
Step: 1
a AttributeBased Access Control ABAC is a security model that uses attributes as building blocks in a structured language to evaluate and enforce acce...
Get Instant Access with AI-Powered Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
Principles Of Information Security
Authors: Michael E. Whitman, Herbert J. Mattord
7th Edition
035750643X, 978-0357506431
