School of Computing

Department of Computer Science

CS5322:   Database Security  

 

[Announcements]  [Instructor] [Course Objectives] [Lecture Schedule] [Reference Texts and Materials] [Assignment] [Project] [Assessment]

Database Security Project

The project aims to equip students with knowledge and hands-on experience of the security features of commercial DBMSs.

There will be two team-based projects. Each team comprises 2 or 3 members. For each project, you are to identify an application. For example:

a) A Hospital Information System manages data on patients, doctors, nurses, lab results, appointments, payment/bills, etc.;

b) A University Information System manages data about students, professors, courses, administrative officers, results, school fees, loans, etc

 

Project I

Implement a Virtual Private Database (VPD) to support your application. You may use Oracle VPD or any commercial DBMS.

You are to submit a report that describes the application, the security policies, the queries, etc. The report should not be more than 6 double-column pages.

 

 

Project II

Implement a MAC-based access control to support your application. You may use Oracle OLS or any commercial DBMS.

You are to submit a report that describes the application, the security policies, the queries, etc. The report should not be more than 6 double-column pages.

 

 

Installing VPD/OLS

Mr Vo has provided some instructions wrt VPD/OLS. Check this out to find out more about installation and tutorials.

 

 

Evaluation

Your project will be evaluated based on (a) the report (its presentation, organization, content), (b) the comprehensiveness and complexity of the application/system, (c) security features, (d) demonstration of the system.

 

 

Project Schedule

 

31 August 2012

Inform Prof Tan of the list of team members and topic

1 Oct 2012 – 5 Oct 2012 (Project I Due)

Report must be submitted on 1 Oct (upload to IVLE). Presentation and demo during the week.

 

Inform Prof Tan of the 2nd topic

29 Oct 2012 – 2 Nov 2012 (Project II Due)

Report must be submitted (upload to IVLE). Presentation and demo during the week

 

 

 

Project TA

 

Mr VO Hoang Tam

Email: voht@comp.nus.edu.sg

Office hours: Wednesdays 2:00-4:00 PM @ Database Research

Lab 3, COM1-01-07

 

 

Plagiarism

You are reminded that plagiarism is a very SERIOUS offence, and disciplinary action (including possibility of expulsion from the university) will be taken against any individual or team found plagiarizing. The individual or team that is being plagiarized will also be punished if it is found to have allowed the work to be plagiarized voluntarily.