Database architecture forms the persistence layer foundation for enterprise applications, encompassing relational databases like Azure SQL Database and SQL Server, NoSQL solutions like Cosmos DB, and specialized databases for specific workloads. .NET developers working with Entity Framework Core, Dapper, or ADO.NET must balance data integrity, performance, security, and scalability while satisfying regulatory compliance requirements.
Modern database design extends beyond schema normalization to include partitioning strategies, indexing optimization, query performance tuning, connection pooling, and resilience patterns like retry logic and circuit breakers. Cloud databases introduce additional considerations: geo-replication for disaster recovery, elastic scaling for variable workloads, and managed backup solutions with point-in-time restore capabilities.
Database Security Controls
Database security directly addresses multiple compliance controls. ISO/IEC 27001 Control A.9 mandates access control through least-privilege database permissions, A.10.1 requires encryption at rest using Transparent Data Encryption (TDE), and A.12.3 demands documented backup and restore procedures. ISO/IEC 27701 privacy controls require data minimization in schema design, purpose limitation in data collection, and retention policies with automated disposal.
Connection string security remains critical—never hardcode credentials; use Azure Managed Identity for authentication, store connection strings in Azure Key Vault, and implement network isolation through Virtual Network integration and Private Endpoints. SQL injection prevention through parameterized queries and stored procedures isn’t just good practice—it’s a mandatory security control.
Database Operations & Monitoring
Performance Monitoring: Implement query performance insights, slow query logging, and index usage analysis. Azure SQL Database provides Query Store and automatic tuning recommendations.
Backup & Recovery: Configure automated backups with appropriate retention periods, test restore procedures regularly, implement geo-replication for critical databases, and document Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO).
Schema Management: Use database migration tools (EF Core Migrations, DbUp, Flyway) in CI/CD pipelines, version control all schema changes, and implement rollback procedures.
Related Topics
Database engineering connects with azure managed services, cloud architecture, security controls, compliance frameworks, dotnet data access patterns, and storage strategies. For monitoring concerns, see observability.