Presentation is loading. Please wait.

Presentation is loading. Please wait.

8/19/20151 Securing a Database Based on notes by Fei Li and Hong Li.

Published byAbigayle Banks Modified over 8 years ago

Similar presentations

Presentation on theme: "8/19/20151 Securing a Database Based on notes by Fei Li and Hong Li."— Presentation transcript:

1 8/19/20151 Securing a Database Based on notes by Fei Li and Hong Li

2 8/19/20152 Topics  Securing the connections to the database: 1.SSL-tunneling between client machine and database machine 2.A secure JDBC driver  Securing the data within a database  Secure Thin JDBC Connection Sample

3 8/19/20153 JDBC Basics  JDBC is a Java API for executing SQL statements  JDBC makes it possible to do three things: 1.establish a connection with a database 2.send SQL statements 3.process the results.

4 8/19/20154 Securing a database  Two points of attack against a database –The connection between clients and database –The data in the database

5 8/19/20155 Securing the JDBC driver transmission  Approach 1: SSL-tunneling –Running a daemon on the client machine –Advantage: simplicity and performance –Disadvantage: not enough of authentication, esp. if the client machine is a shared or multi-user environment.  Approach 2: Proxy to JDBC drivers –developing a JDBC driver proxy –Advantage: provide more security –Disadvantage: much more complex

6 8/19/20156 SSL-Tunneling TunnelServer Database instance Database Machine TunnelServer Client Machine Client Application SQL request SQL response SQL request SSL Socket

7 8/19/20157 The SSL-Tunneling Approach  Two instances of the tunnel server, one on the client machine and the other on the database server machine  Each instance serves as a proxy.  Simplicity of encrypting the database connection by SSL-tunneling between the client application and the DBMS

8 8/19/20158 Query processing Client Machine Client application The JDBC client Client-side tunnel server Reads unencrypted data from the JDBC client; Write it encrypted to the database machine over SSL Database Machine Server-side tunnel server Reads the encrypted data from the client-side tunnel server; Sends it unencrypted to the DBMS over localhost Database server

9 8/19/20159 Response processing Client Machine Client-side tunnel server Reads encrypted data from the server-side tunnel server; Write it unencrypted to the JDBC client; Client application Database Machine Database server Sends query result to the tunnel server Server-side tunnel server Reads the query result from the DBMS over localhost; Sends it encrypted to the client-side tunnel server;

10 8/19/201510 The SSL-Tunneling Approach TunnelServer Database instance Database Machine TunnelServer Client Machine Client Application 3. SQL request 4. SQL response 6. SQL response 1. SQL request 2. Encrypted SQL request 5. Encrypted SQL response Assumption: Connections to localhost cannot be snooped. True or false?

11 8/19/201511 Example 1: The Tunnel Server  Two classes –TunnelServer –TunnelThread  TunnelServer class (p. 310) –Correction: client (mRemote == false) or the server (mRemote == true) public TunnelServer (String server, int appPort, int tunnelPort, boolean remote) { super(); mDestServer = server; mAppPort = appPort; mTunnelPort = tunnelPort; mRemote = remote; waitForConnections(); }

12 8/19/201512 Example1: The Tunnel Server  Get server socket, waiting for connections, and create two instances of TunnelThread. private void waitForConnections() { …… serverSocket = getServerSocket(); while (mListening) { try { logMessage("Waiting for connections."); srcSocket = serverSocket.accept(); …… destSocket = connect(); logMessage("Connected to remote server at " + destSocket.getInetAddress() + "."); fromClient = getTunnelThread("fromClient"); toClient = getTunnelThread("toClient"); ……

13 8/19/201513 Example1: The Tunnel Server  The TunnelThread class (p. 315-316) –Forwarding requests and responds /** Creates new TunnelThread * @param name a name for this thread*/ public TunnelThread(String name) { super(name); setDaemon(true); } /**Default constructor -- create a tunnel thread with a default name*/ public TunnelThread( ) { super( ); setDaemon(true); } public void run ( ) { }

14 8/19/201514 Example1: The Tunnel Server  Run the Tunnel Server with JDBC 1.Generate keystore/certificates for client and server  serverKeyStore, clientKeyStore (p.317) 2.Copy serverKeyStore to the database server; Start the tunnel server on the server side (database machine) 3.Copy clientKeyStore to the client machine; Start the tunnel server on the client side (client machine) (p.318) 4.Run a test application on the client machine

15 8/19/201515 Example1: The Tunnel Server  Create Keystore >keytool -genkey -keyalg RSA -keystore serverKeyStore >keytool -genkey -keyalg RSA -keystore clientKeyStore

16 8/19/201516 Example1: The Tunnel Server  Create Keystore –Export the certificates >keytool -export -keystore serverKeyStore -file server.cer >keytool -export -keystore clientKeyStore -file client.cer

17 8/19/201517 Example1: The Tunnel Server  Create Keystore –Import the certificates >keytool -import -file client.cer -alias client -keystore serverKeyStore >keytool -import -file server.cer -alias server -keystore clientKeyStore

18 8/19/201518 Example1: The Tunnel Server  Start the tunnel server on the server –Copy serverKeyStore TunnelServer.class, and TunnelThread.class to the database machine >java -Djavax.net.ssl.keyStore=serverKeyStore -Djavax.net.ssl.keyStorePassword=sps2020 -Djavax.net.ssl.trustStore=serverKeyStore com.isnetworks.crypto.net.TunnelServer localhost 1521 6543 remote  Exercise: –Use the TunnelServer.java source code to trace the execution of the server-side TunnelServer and show its screen output.

19 8/19/201519 Example1: The Tunnel Server  Start the tunnel server on the client –Copy clientKeyStore TunnelServer.class, and TunnelThread.class to the clinet machine >java -Djavax.net.ssl.keyStore=clientKeyStore -Djavax.net.ssl.keyStorePassword=cps2020 -Djavax.net.ssl.trustStore=clientKeyStore com.isnetworks.crypto.net.TunnelServer diamond.rocks.uhcl.edu 1521 6543 local

20 8/19/201520 Example1: The Tunnel Server  Run a test application on the client machine –Use JDBCTest.java –Set the JDBC driver (classes.zip) in the classpath DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver()); Connection conn = DriverManager.getConnection ( "jdbc:oracle:thin:@localhost:1521:nas", “username", “password");

21 8/19/201521 Example1: The Tunnel Server  Sample programs for running Tunnel Server on dcm.uhcl.edu (the client application) and diamond.rocks.uhcl.edu (the DBMS server): –TunnelServer.javaTunnelServer.java –TunnelThread.javaTunnelThread.java –JDBCTest.javaJDBCTest.java  Detailed instructions: instructions.docinstructions.doc

22 8/19/201522 Securing the JDBC Driver Transmission  Approach 2: Proxy to JDBC drivers –developing a JDBC driver proxy –Advantage: provide more security –Disadvantage: much more complex

23 8/19/201523 The JDBC Driver Proxy  Provide the encryption and authentication for many applications –Delegate all the calls to dynamically bound driver  Provide proxies to JDBC driver classes –Proxy design pattern in distributed computing  Use SSL for the connection –Encryption –Authentication later on

24 8/19/201524 The JDBC Driver Database Machine DB Secure JDBC Driver Proxy Database client (application server)

25 8/19/201525 The JDBC Driver  Client-Server communication –Server handles configuration, connections to the DB, and delegation of the JDBC calls –Client delegates all the connections to the server  Choose RMI as a network transport for communication –Have to add one more layer to the remote call –The diagram on p.321.

26 8/19/201526  Implementation –Delegate the common operations to an abstract super class. –Use a single remote class to pass any method call instead of creating an RMI proxy for each JDBC interface –Is a complex solution to a simple problem –Proxy pattern enables developer to add service The JDBC Driver

27 8/19/201527  Using the secure JDBC driver Detailed instructions for running the sample application: SecureDriver.rtfSecureDriver.rtf  Steps of Configuring the driver: 1.Generate the keys and certificates 2.Edit the SecureDriver_config.xml file 3.Create policy files for the server and client The JDBC Driver

28 8/19/201528  Edit the SecureDriver_config.xml file –Defines JDBC connection directly to the database from the secure driver  Create policy files –RMI requires that code run with a security manager –Add some special permissions to policy files –Server policy file The ability to connect to the database The ability to talk to the RMI registry The ability to receive a connection from a remote client The JDBC Driver

29 8/19/201529 The JDBC Driver  Connecting to the RMI server process: –The connect( ) method is called by DriverManager and connects to the RMI server process, which is where the actual JDBC connections reside.

30 8/19/201530 The JDBC Driver  Discussion: Can the application be modified to run without RMI? How?

31 8/19/201531 Securing Data in the Database  Protect the data in database –Database permission Should be set properly by the administrator –Read- or write-only database If it is well protected, highly controlled, and not often accessed Large online retailers use write-only database

32 8/19/201532 Securing data in the database  Protect the data in databases –Symmetric encryption Applications storing a secret key need to be completely safe –Asymmetric encryption Public key is used for encrypting the data in the DB Private key must be stored somewhere safe.  Disadvantage of encrypting data –Expensive –Remove some of the value of using a database

33 8/19/201533 Example3: Encrypting credit cards Credit Cards 3Xizmj2 Cg31C1l … Database (Stores encrypted credit card data) Finance client Decrypt Server One-way encrypt

34 8/19/201534 Encrypting credit cards CreditCardFactory -mPublicKey +createCreditCard() +findAllCreditCards() +findCreditCard() CreditCard -mAccountID -mCreditCardNumber +CreditCard() +getAccountID() +getCreditCardNumber() DatabaseOperations +getAllCreditCardAccountIDs() +loadCreditCardDBO() +store(creditCardDBO:CreditCardDBO) CrditCardDBO -mAccountID -mEncryptedCCNumber -mEncryptedSessionKey +CreditCardDBO() +getAccountID() +getEncryptedCCNumber() +getEncryptedSessionKey()

35 8/19/201535 Encrypting credit cards  Testing the application – CreateTest.java –Create a credit card based on user-specified account ID and credit card number Create a Properties object from the file system Properties properties = new Properties(); FileInputStream fis = new FileInputStream(PROPERTIES_FILE); properties.load(fis); fis.close(); // Create the credit card CreditCardFactory factory = new CreditCardFactory(properties); CreditCard creditCard = factory.createCreditCard(id,ccNumber);

36 8/19/201536 Encrypting credit cards  Testing the application – ViewTest –Define the location of the keystore –Load the keystore to retrieve the private key private static final String KEYSTORE = "creditcardExample.ks"; …… // Load the keystore to retrieve the private key. String ksType = KeyStore.getDefaultType(); KeyStore ks = KeyStore.getInstance(ksType); FileInputStream fis = new FileInputStream(KEYSTORE); ks.load(fis,PASSWORD); fis.close(); PrivateKey privateKey = (PrivateKey)ks.getKey("mykey",PASSWORD);

37 8/19/201537 Secure Thin JDBC Connection  Oracle JDBC Thin Driver –The Oracle JDBC Thin driver is a 'Type IV' (native protocol, 100% Pure Java) implementation that complies with the JDBC 1.22 standard. –The JDBC Thin driver uses Java Sockets to connect directly to the Oracle Server –The JDBC Thin driver does not require Oracle software on the client side

38 8/19/201538 Secure Thin JDBC Connection  Encryption and integrity support –use Oracle Advanced Security data encryption and integrity features in your Java database applications – When using the Thin driver, the parameters are set through a Java properties file –Encryption is enabled or disabled based on a combination of the client-side encryption-level setting and the server-side encryption-level setting

39 8/19/201539 Secure Thin JDBC Connection  Get SecureThinDriver.jar to run the sample –Configuring Encryption Parameter Using Oracle Net Manager –Run the Application using JDeveloper Environment –Run the Application from JDK Environment

40 8/19/201540 Reference [1] JDBC Introduction http://java.sun.com/docs/books/jdbc/intro.html [2] J. Garms and D. Somerfield. Professional Java Security [3] Secure Thin JDBC Connection http://otn.oracle.com/sample_code/deploy/security/files/secure_thin_dr iver/Readme.html [4] The status of HIPNS http://nfdfn.jinr.ru/~litvin/nobugs2000/nobugs2000_litvin_hipns_proce eding.htm [5] Improving Database Performance with Oracle8 ‚ http://otn.oracle.com/products/oracle8/htdocs/xo8p3twp.htm

Download ppt "8/19/20151 Securing a Database Based on notes by Fei Li and Hong Li."

Similar presentations

Message Passing Vs Distributed Objects

Message Passing Vs Distributed Objects
What is RMI? Remote Method Invocation –A true distributed computing application interface for Java, written to provide easy access to objects existing.

What is RMI? Remote Method Invocation –A true distributed computing application interface for Java, written to provide easy access to objects existing.
VOYAGER: Yet Another Secure Web Browser to Demonstrate Secure Socket Layer Working and Implementation By : Shrinivas G. Deshpande Advisor: Dr. Chung E.

VOYAGER: Yet Another Secure Web Browser to Demonstrate Secure Socket Layer Working and Implementation By : Shrinivas G. Deshpande Advisor: Dr. Chung E.
SSL (Secure Socket Layer)

SSL (Secure Socket Layer)
Copyright © 2001 Qusay H. Mahmoud RMI – Remote Method Invocation Introduction What is RMI? RMI System Architecture How does RMI work? Distributed Garbage.

Copyright © 2001 Qusay H. Mahmoud RMI – Remote Method Invocation Introduction What is RMI? RMI System Architecture How does RMI work? Distributed Garbage.
Company LOGO Remote Method Invocation Georgi Cholakov, Emil Doychev, University of Plovdiv “Paisii.

Company LOGO Remote Method Invocation Georgi Cholakov, Emil Doychev, University of Plovdiv “Paisii.
FONG CHAN SING (143334) WONG YEW JOON (143388). JAVA RMI is a distributive system programming interface introduced in JDK 1.1. A library that allows an.

FONG CHAN SING (143334) WONG YEW JOON (143388). JAVA RMI is a distributive system programming interface introduced in JDK 1.1. A library that allows an.
Real-Time Authentication Using Digital Signature Schema Marissa Hollingsworth BOISECRYPT ‘09.

Real-Time Authentication Using Digital Signature Schema Marissa Hollingsworth BOISECRYPT ‘09.
Java Security Model Lab#1 I. Omaima Al-Matrafi. Safety features built into the JVM Type-safe reference casting Structured memory access (no pointer arithmetic)

Java Security Model Lab#1 I. Omaima Al-Matrafi. Safety features built into the JVM Type-safe reference casting Structured memory access (no pointer arithmetic)
LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.

LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.
Notes to the presenter. I would like to thank Jim Waldo, Jon Bostrom, and Dennis Govoni. They helped me put this presentation together for the field.

Notes to the presenter. I would like to thank Jim Waldo, Jon Bostrom, and Dennis Govoni. They helped me put this presentation together for the field.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Remote Method Invocation Chin-Chih Chang. Java Remote Object Invocation In Java, the object is serialized before being passed as a parameter to an RMI.

Remote Method Invocation Chin-Chih Chang. Java Remote Object Invocation In Java, the object is serialized before being passed as a parameter to an RMI.
Distributed Application Development B. Ramamurthy.

Distributed Application Development B. Ramamurthy.
Component-Based Software Engineering Introducing the Bank Example Paul Krause.

Component-Based Software Engineering Introducing the Bank Example Paul Krause.
Certificates, SSL and IPsec Ahmed Muaydh Sara Bin Saif Shi-Jey Chou Advisor:Dr. Leszek Lilien.

Certificates, SSL and IPsec Ahmed Muaydh Sara Bin Saif Shi-Jey Chou Advisor:Dr. Leszek Lilien.
Java Server Programming Jeff Schmitt Towson University October 15, 1998.

Java Server Programming Jeff Schmitt Towson University October 15, 1998.
Web Proxy Server. Proxy Server Introduction Returns status and error messages. Handles http CGI requests. –For more information about CGI please refer.

Web Proxy Server. Proxy Server Introduction Returns status and error messages. Handles http CGI requests. –For more information about CGI please refer.
JSSE API University of Palestine Eng. Wisam Zaqoot April 2010.

JSSE API University of Palestine Eng. Wisam Zaqoot April 2010.
Softsmith Infotech Secure Socket Layer (SSL) and Tomcat.

Softsmith Infotech Secure Socket Layer (SSL) and Tomcat.

Similar presentations

Ads by Google