DAS | Data Security |
As increasing amounts of data are captured about patients, consumers and citizens, and as more ways of linking and utilising such data emerge, so do concerns about the treatment of personal data — with these concerns emerging from a variety of stake-holders. As such, issues pertaining to database and applications security have increased in importance in recent years. Understanding how existing and emerging legislation might be considered in designing secure databases, as well as how such designs might be mapped to practical security measures, will be essential in an increasingly data-driven world.
Course dates
| 30th April 2012 | Oxford University Department of Computer Science | 07 places remaining. |
| 17th June 2013 | Oxford University Department of Computer Science | 18 places remaining. |
Objectives
The successful participant will:
- have an awareness of both the risks and threats associated with data security, as well as the relevent legislative and regulatory frameworks;
- be able to utilise established and emerging theory in the design of secure databases;
- be capable of implementing such designs.
Contents
- Context:
- privacy and security in a data-driven world; current regulation and legislation; risks and threats
- Fundamentals:
- relational database essentials; security essentials; statistical databases
- Design:
- access control; inference control; design principles
- Implementation:
- from theory to practice; auditing and intrusion detection; security impacts
- Other issues:
- distributed database security; federated identity management; security for XML and web services
Requirements
Participants should have a basic understanding of computer security to the level provided by the Security Principles course; participants should also have some familiarity with predicate logic and set theory to the level provided by the Software Engineering Mathematics course.