Basta — Database Security (1st edition)
Comprehensive guide to database security: access control, encryption, auditing, and compliance.
📅 Tuesday 13 May 2026 :
Assessment 2 — DB Security & Forensics
will take place in Amphi 4 at 14:00.
Attendance is mandatory.
No make-up session will be offered to absent students.
⚠️ The lecture session and all TP sessions
scheduled on the same day will not take place.
📅 الثلاثاء 13 ماي 2026 :
سيجري التقييم الثاني — أمن قواعد البيانات
في القاعة الكبرى 2 (Amphi 4) على الساعة 14:00.
الحضور إلزامي.
لن يُتاح أي تعويض للطلاب الغائبين.
⚠️ لن تُعقد حصة المحاضرة وكذا حصص الأعمال التطبيقية
المبرمجة في نفس اليوم.
Database Security & Forensics
Master 1 SI
Official space for the Database Security & Forensics (SCBDD) module — Master 1 SI, University of Skikda. This page provides centralized access to lectures, tutorials, labs, pedagogical resources, and module information.
Official Syllabus
Track — Computer Security
The Database Security & Forensics (SCBDD) module, part of the Master 1 SI (IT Security) program at the University of Skikda, is available on al-moualime.com. It covers advanced methods for securing, auditing, and investigating modern databases. Topics include authentication, access control, encrypted data querying, inter-database communications security, security auditing and testing, incident response, and forensic analysis. The course combines lectures and Practical Work (TP). Assessment: Continuous assessment and exam.
Resources
Software
PostgreSQL — Relational Database Management System (RDBMS)
PostgreSQL is an open-source Relational Database Management System with advanced security features: role-based access control (RBAC), Row-Level Security (RLS), SSL/TLS encryption, and integration with auditing extensions such as pgAudit.
pgAudit — PostgreSQL Audit Extension
Open-source extension providing detailed session and object audit logging for PostgreSQL. Essential for regulatory compliance (GDPR, PCI-DSS, SOX) and forensic investigation.
Wireshark — Network Protocol Analyzer
Open-source tool for capturing and analyzing network traffic. Used in this module to inspect database communication protocols, detect unencrypted connections, and support forensic network analysis.
Lectures
Introduction FR
General introduction to the Database Security & Forensics module: objectives, organization, assessment methods, and overview of the topics covered.
Chapter 1 — Security and Information Technology FR
This chapter introduces the fundamentals of information security applied to databases: threat landscape, CIA triad (Confidentiality, Integrity, Availability), attack vectors, and defense-in-depth strategies.
- Objective: Understand the security challenges of modern information systems and identify the main categories of threats and countermeasures.
- Concepts to know: Internal vs. external threats; privilege escalation; data breach lifecycle; security policies and standards.
- Key ideas: CIA triad; defense in depth; principle of least privilege; threat modeling; OWASP Top 10 for databases.
Takeaway: Database security is a multi-layered discipline — no single measure is sufficient.
Before the next lecture: Review the Chapter 1 PDF and research a recent database breach case study.
Upcoming subjects:
Authentication
Soon
Access Control
Soon
Querying Encrypted Data
Soon
Securing DB Communications
Soon
Security Auditing
Soon
Security Testing
Soon
Incident Response
Soon
Forensic Analysis
Soon
Practical Work (TP)
Assessments
Assessment 1 — DB Security & Forensics
Written exam covering database security principles, privilege management, and forensic analysis techniques.