Database Security and Encryption

  1. Authentication and Identity Management
    1. Authentication Fundamentals
      1. Identity Verification Process
        1. User Registration
          1. Identity Proofing
            1. Account Provisioning
            2. Authentication Factors
              1. Something You Know
                1. Passwords
                  1. PINs
                    1. Security Questions
                    2. Something You Have
                      1. Hardware Tokens
                        1. Smart Cards
                          1. Mobile Devices
                          2. Something You Are
                            1. Biometric Identifiers
                              1. Behavioral Patterns
                                1. Physical Characteristics
                            2. Password-Based Authentication
                              1. Password Security
                                1. Password Policies
                                  1. Length Requirements
                                    1. Complexity Rules
                                      1. Character Set Requirements
                                      2. Password Storage
                                        1. Hashing Algorithms
                                          1. bcrypt
                                            1. scrypt
                                              1. Argon2
                                              2. Salt Generation
                                                1. Salt Storage
                                                2. Password Management
                                                  1. Password Rotation
                                                    1. Password History
                                                      1. Account Lockout Policies
                                                    2. Password Attacks and Defenses
                                                      1. Common Attack Methods
                                                        1. Brute Force Attacks
                                                          1. Dictionary Attacks
                                                            1. Rainbow Table Attacks
                                                            2. Defense Mechanisms
                                                              1. Rate Limiting
                                                                1. Account Lockout
                                                                  1. CAPTCHA Implementation
                                                              2. Multi-Factor Authentication
                                                                1. MFA Implementation
                                                                  1. Factor Combination Strategies
                                                                    1. MFA Protocols
                                                                      1. Integration Methods
                                                                      2. MFA Technologies
                                                                        1. SMS-Based Authentication
                                                                          1. Email-Based Authentication
                                                                            1. Authenticator Applications
                                                                              1. Hardware Security Keys
                                                                              2. MFA Challenges
                                                                                1. User Experience Considerations
                                                                                  1. Backup Authentication Methods
                                                                                    1. Recovery Procedures
                                                                                  2. Advanced Authentication Methods
                                                                                    1. Certificate-Based Authentication
                                                                                      1. Digital Certificates
                                                                                        1. Public Key Infrastructure
                                                                                          1. Certificate Lifecycle Management
                                                                                          2. Biometric Authentication
                                                                                            1. Fingerprint Recognition
                                                                                              1. Facial Recognition
                                                                                                1. Voice Recognition
                                                                                                  1. Iris Scanning
                                                                                                  2. Single Sign-On
                                                                                                    1. SSO Protocols
                                                                                                      1. SAML
                                                                                                        1. OAuth
                                                                                                          1. OpenID Connect
                                                                                                          2. Identity Providers
                                                                                                            1. Service Providers
                                                                                                              1. Federation Management
                                                                                                              2. Kerberos Authentication
                                                                                                                1. Ticket Granting Service
                                                                                                                  1. Authentication Server
                                                                                                                    1. Service Tickets
                                                                                                                      1. Realm Management

                                                                                                                  Previous

                                                                                                                  1. Fundamentals of Database Security

                                                                                                                  Go to top

                                                                                                                  Next

                                                                                                                  3. Authorization and Access Control