Introduction to Database Security Issues

Questions and Answers

Which of the following best describes a loss of integrity in the context of database security?

• Improper modification of database information. (correct)
• Unauthorized disclosure of sensitive information.
• The inability to deduce facts from summary statistics.
• A legitimate user being unable to access data.

A failure that prevents a legitimate user from accessing needed data would be considered a:

• Compromise of integrity.
• Breach of privacy.
• Loss of availability. (correct)
• Loss of confidentiality.

Which of these scenarios would be an example of a loss of confidentiality?

• A system malfunction makes the database unavailable to all users.
• A hacker gains unauthorized access to medical records. (correct)
• Summary statistics are used to infer confidential information about individuals.
• A user accidentally deletes existing records from the database.

According to the provided content, which of these is NOT considered as a threat to database security?

A system administrator changing user account passwords. (C)

Based on the content, what aspect of database security is specifically addressed by creating user accounts with passwords?

Access control. (D)

What is the main goal of 'flow control' regarding database security?

To prevent unauthorized users from accessing sensitive information. (B)

What does the content say about the responsibility of maintaining database security?

It is a shared responsibility of the network, DBMS and other systems. (A)

What kind of security measure is described when certain inferences are prevented based on summary statistics?

Inference control. (D)

If user B is granted a privilege with the GRANT OPTION, what capability does user B possess?

User B can grant the same privilege to other users. (D)

Which SQL command grants user A1 the permission to create new database tables?

GRANT CREATETAB TO A1; (B)

User A1 creates the EMPLOYEE and DEPARTMENT tables, then grants INSERT and DELETE privileges to A2 without GRANT OPTION. What can A2 do with these privileges?

A2 can use the privileges on those tables but cannot grant those same privileges to other users. (D)

If a user grants a privilege with the GRANT OPTION, what is one additional task that the Database Management System (DBMS) must handle?

The DBMS must keep track of how privileges were granted if propagation is allowed. (B)

Suppose user A owns a relation and grants privileges to user B. Which of the following accurately describes user A's inherent privilege?

User A automatically has the GRANT OPTION to extend the permission to other users. (A)

What is the PRIMARY purpose of data encryption as described in the content?

To protect sensitive information during transmission over a network. (C)

Which of the following BEST characterizes discretionary security mechanisms?

They control access to data based on granted privileges to users. (B)

What is a key difference between discretionary and mandatory security mechanisms?

Discretionary mechanisms grant privileges to users, while mandatory mechanisms classify data and users. (A)

What is a typical function associated with the Database Administrator's (DBA) account?

Granting and revoking privileges to database users. (B)

Which of the following is NOT a typical action performed using DBA-privileged commands?

Data querying and analysis (D)

What is the PRIMARY basis for discretionary access control within a database system?

The granting and revoking of privileges to users. (C)

What is a common security policy regarding user access enforced by mandatory security mechanisms?

Users can only access data classified at or below their own clearance level. (D)

Which statement accurately describes the concept of a 'DBA' account?

It is a superuser account with extensive control over database operations. (C)

What is the primary purpose of granting privileges at the account level in a database system?

To define which users can create, drop, alter, or modify database objects. (B)

In the context of database privileges, what does a 'relation owner' typically possess?

All privileges on the relations they own, including granting privileges to others. (C)

What is the primary benefit of using views to manage database access?

To restrict access to specific columns or rows of a table without modifying the base table (B)

Why is the 'REVOKE' command useful in database systems?

To cancel previously granted privileges when they are no longer necessary or when a task is completed. (C)

When a relation owner grants privileges on a relation to another account, what does the GRANT OPTION determine?

Whether the user can further grant those same privileges to other accounts. (B)

What is NOT a common type of privilege that might be granted at a relation or table level?

ALTER (D)

If user A creates a view V from relation R, and grants SELECT on V to user B, what is a consequence of this action?

User B's queries on V are limited to what A included in the view definition, and what A has privileges to see in R. (C)

Which database access control mechanism is SQL2 NOT defined at?

Account level access control (D)

Flashcards

Database Security

Database security ensures the protection of data stored in databases against unauthorized access, modification, or disclosure. It covers legal, ethical, policy, and system-related aspects.

Loss of Integrity

Data integrity is maintained by preventing unauthorized modification of database information. This includes actions like creating, inserting, and updating data.

Loss of Availability

Loss of availability occurs when legitimate users are blocked from accessing database objects, making the data unusable.

Loss of Confidentiality

Confidentiality is violated when unauthorized individuals gain access to sensitive information, such as personal medical records.

Access Control

Access control involves managing user permissions to restrict unauthorized access to databases. This is typically achieved through user accounts and passwords.

Inference Control

Inference control prevents unauthorized deductions of information from database queries. This protects sensitive data even if aggregated data is accessible.

Flow Control

Flow control ensures that information does not reach unauthorized users. This restricts the flow of data to prevent leaks and breaches.

Database Security is Not Isolated

Database security is not an isolated concern, it requires a holistic approach which involves various components like applications, web servers, firewalls and security monitoring systems.

Data encryption

Protects sensitive data like credit card numbers during transmission over networks.

Mandatory security mechanisms

Defines the data and users into security tiers and enforces rules to prevent unauthorized access based on those tiers.

Discretionary security mechanisms

Controls who can access specific database parts, records, or fields, and how (read, write, delete, etc.).

Database administrator (DBA)

The central authority for managing the database system, having powerful permissions that regular users don't.

DBA account

The special account with the highest level of privileges for managing the database.

DBA-privileged commands

Commands that allow the DBA to grant or revoke permissions to specific users or groups.

Account Level Privilege

A way to control database access by assigning specific privileges to individual user accounts.

Role-Based Access Control (RBAC)

A system of granting rights based on an individual's role or affiliation within an organization.

Relation/Table Level Privilege

A way to manage access to specific data in a database, typically assigned to the creator of that data.

Relation Owner's Privileges

The owner of a relation, granted all privileges on that relation, can grant privileges to other users.

Revoking Privileges

To remove a privilege previously granted to a user.

Grant Option

To grant privileges to another user to further grant privileges to others.

View

A virtual table that represents a subset of data from a table.

Specifying Privileges using Views

Creating a view to restrict access to specific fields of data for certain users.

CREATETAB

The ability to create new database tables.

GRANT command

A statement used in SQL to grant permissions on a database object to a user or group of users.

DBA

The individual who manages the database and has the highest level of privileges.

GRANT OPTION for relation owners

The privilege given to the owner of a database object, enabling them to grant permissions to other users.

Study Notes

Database Security

• Database security is a broad topic encompassing legal, ethical, and system-related issues.
• Security concerns include the right to access information, policy decisions (e.g., whether medical records are public), and system-level security functions.
• Threats can lead to data loss of integrity (data modification), loss of availability (authorized users unable to access data), and loss of confidentiality (unauthorized data disclosure).

Introduction to Database Security Issues

• Database security is not solely the responsibility of the DBMS.
• Multiple services, including applications, web servers, firewalls, and security monitoring, are interconnected.
• Access control is crucial, using user accounts and passwords.
• Inference control is necessary to prevent unauthorized derivation of sensitive information from aggregate data.
• Flow control restricts data flow paths to prevent access by unintended users.
• Encryption protects sensitive data transmitted over networks.

Discretionary Access Control

• Discretionary security mechanisms give users privileges to access specific data (files, records, fields) in particular ways (read, insert, delete, update).
• Account-level privileges are set by the DBA independently of the data.
• Relation-level privileges apply to specific relations which can be selectively granted to users by the owner. An owner can grant read (SELECT), modification (INSERT, UPDATE, DELETE) or reference privileges.

Mandatory Security Mechanisms

• Data and users are classified into security classes (levels).
• Access is controlled based on data and user classes ensuring data security.
• A user only accesses data at or below their own security level.

Database Security and the DBA

• The Database Administrator (DBA) is the central authority for administering the database system.
• The DBA has a privileged system account with powerful commands.
• DBA can perform actions such as account creation, granting and revoking privileges, changing security levels.

SQL Injection

• SQL injection is a security vulnerability.
• The outline mentions it but does not further detail this.

Description

Explore the critical concepts of database security, including legal, ethical, and system-related issues. This quiz covers access control, inference control, and encryption methods to protect sensitive information. Understand the responsibilities beyond the DBMS and the interconnected services that play a role in securing databases.