Databases
The intent of the Databases Knowledge Unit is to teach students how database systems are used, managed, and issues associated with protecting the associated data assets.
Topics
- Outline different types and structures of modern database management systems and their application, such as
- Overview of database security models and concerns, such as: a. Inference b. Aggregation c. Injection d. Hashing and encryption e. Data corruption f. Unauthorized access g. Database access controls (DAC, MAC, RBAC, Clark-Wilson
- Outline different types and structures of modern database management systems and their application, such as:
- Distributed (Hadoop, Mongo, etc.)
- Describe the role of a database, a database management system (DBMS), and a database server within a complex system supporting one or more applications.
- Outline different models for databases and cases where they may be used.
- Identify and describe common security concerns in databases and database management systems.
- Overview of database security models and concerns, such as:
Outcomes
- Describe the role of a database, a database management system (DBMS), and a database server within a complex system supporting one or more applications.
- Outline different models for databases and cases where they may be used.
- Identify and describe common security concerns in databases and database management systems.
KSA-T
Below are the Knowledge, Skills, Abilities and Tasks (KSA-T) identified as being required to perform this work role.
Learn More about the KAS-T's.
ID |
DESCRIPTION |
K0023 |
Knowledge of database management systems, query languages, table relationships, and views. |
K0203 |
Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model). |
K0236 |
Knowledge of how to utilize Hadoop, Java, Python, SQL, Hive, and Pig to explore data. |
K0024 |
Knowledge of database systems. |
K0420 |
Knowledge of database theory. |
K0421 |
Knowledge of databases, portals and associated dissemination vehicles. |
K0288 |
Knowledge of industry standard security models. |
K0033 |
Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists). |
K0007 |
Knowledge of authentication, authorization, and access control methods. |
ID |
DESCRIPTION |
S0029 |
Skill in developing data models. |