Database Security Testing
The Challenges
At the heart of any useful information system is a database. Tables and rows; views and relations; and of course, there is the data itself. Yet the database is only a small portion of the information system that enables its use—the database management system (DBMS). Is your’s secure?
Security of Database Systems
Like any other information system, a database system requires configuration, patching, authentication and authorization controls. Most commercial database systems include helpful procedures that make life easier for application developers and database administrators. Unfortunately, these same procedures, if not properly locked down, can make life easier for your adversaries. Many of the first steps toward developing an information system revolve around the database. Quite often, the decisions made in the database system development effort will have a major impact on information security.
Database Security Auditing
Sword & Shield engineers are experienced in auditing Oracle, Microsoft SQL, Notes, and several other database management system products. Among other things, Sword & Shield security engineers analyze authentication and authorization controls in the database system for least-privilege access controls and audit traceability. Emphasis is placed on matching the degree of security with the business and operational needs.
Find out more:
Penetration Testing
Application Security Testing
Wireless Security Testing
Telecom/PBX Security
Social Engineering
For Information on how Sword & Shield is helping federal agencies integrate penetration testing to address FISMA mandated annual security reviews, click here.
For more information on the growing threat of VISHING attacks, click here.
If you need help with your compliance initiatives, click here.
Our Markets
We service many markets, predominantly in these sectors:
Request Consultation
To speak to a member of our team, please fill out this request form.
