Security Principles

Security principles lay the foundation of thinking on which all security solutions are based. So far, in this chapter, you've looked at the dark side of security. The focus has been on the threats and dangers that must be addressed. The next two chapters will deal with specific steps you can take to improve the security of your SQL Servers, so this chapter will leave you with a review of commonly recommended security principles and practices. The principles covered include:

  • Start with good design.
  • Trust, but monitor.
  • Defense-in-depth
  • Least privilege

Start with Good Design

The principle embodied in the phrase "start with good design" simply means that you should implement systems that are secure by default. You should implement ...

Get SQL Server® 2008 Administration: Real World Skills for MCITP Certification and Beyond now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.