The Sarbanes–Oxley Act (SOX)
Security metadata
audit (
see
Audit metadata)
code signing
credentials
Database Properties dialog box
DBA
DemoLogin’s Login name
encryption configuration (
see
Encryption metadata)
EXECUTE AS statement
parameters, sys.fn_my_permissions
policy
principals
public role
retrieve database owners
risks, visibility
SID
sp_MShasdbaccess procedure
sp_table_privileges
columns
parameters
return results
SQL Server administration
SQL Server Management Studio
SUSER_SNAME()function
sys.fn_my_permissions
user’s effective permissions
VIEW DEFINITION permission
visible
Security model
database-level
definitions
hierarchy principal
instance level security, implementation
Server audit specification options
Server Message Block (SMB)
Service account
model
permission and assignment requirements
SMB
types
domain user account
local user account
MSAs
virtual accounts
Service account protection
Audit dialog box, creation
Audit dialog box, filter page
audits properties dialog box
constant password changes
new job step dialog box
new schedule dialog box
disabling
mixed mode authentication
password polices
renaming
security policy console
server audit specification dialog box
SQL injection attack
destructive attacks
environment preparation
CarterSecureSafe, creation
Default.aspx Code
insecure features
web.config
welcome.aspx Code
information leakage
database name
domain name
instance name
non-informative error
server name
table name
network attack
prevention
abstraction layer, usage
data-tier
db_owner database role
stored procedure
sysadmin role
T-SQL statements
user identity spoofed
SQL server audit
Action Groups (
see
Audit Action Groups)
creation
definition
implementation
security log
windows application log
SQL server audit, implementation
creation
dialog box
dialog box-filter page
database audit specification
specification options
SQL Server Configuration Manager
SQL Server database engine service account
SQL Server encrytion hierarchy
SQL Server Management Studio (SSMS)
System-level encryption tooling