Abstract: The security baseline is minimum security requirements of a system, providing a kind of self-examination and accept external assessment of ways and means,with security baseline database we can identify potential security risks,improve the security of the database. Oracle and SQL Server database security configuration specification consists primarily of user account password security and authentication policies,manage security,and logging and auditing.Details of database security configuration includes restricting user access to database tables,password protection,rights management,encryption on communication protocols,and so on.Set up a proper scoring rule to integrated database security configuration scores,with the score the user can determine whether their database is secure.