Introduction to Database Security

Questions and Answers

Database security is a narrow area of focus, mainly concerned with system-level security.

False (B)

Which of the following is NOT a threat to databases?

Loss of cost-effectiveness (correct)

Loss of integrity

Loss of availability

Loss of confidentiality

Unauthorized access to confidential information can lead to a violation of the ______ Act.

Data Privacy

Give an example of how improper modification of information can lead to a loss of integrity in a database.

A deliberate or accidental change to a database record, such as changing a customer's credit limit without authorization, could compromise the accuracy and trustworthiness of the data.

Match the following database security control measures with their primary focus:

Access control = Restricting user access to specific data based on permissions and credentials Inference control = Preventing unauthorized users from deducing sensitive information from aggregated data Flow control = Controlling the movement of information within a system to prevent unauthorized access

Besides the DBMS, which other elements contribute to the security of a database system?

All of the above (D)

Explain how "loss of availability" affects users in a database system.

Loss of availability prevents legitimate users from accessing the data they need, potentially disrupting business operations, research, or data-driven decision-making.

DBMS alone is responsible for ensuring the complete security of a database.

False (B)

Which of the following is NOT a typical mode of access granted to users in discretionary security mechanisms?

Execute (A)

Mandatory security mechanisms classify both users and data into security classes.

True (A)

What is the primary role of a Database Administrator (DBA) in a database system?

A Database Administrator (DBA) manages and controls the overall access and security of the database system.

Data encryption is primarily used to protect sensitive data, such as ______, that is transmitted over communication networks.

credit card numbers

Match the following database security mechanisms with their descriptions:

Discretionary security mechanisms = Grant access privileges to users for specific data, records, or fields Mandatory security mechanisms = Enforce multilevel security by classifying users and data based on security clearance levels DBA = Central administrator responsible for managing database security

Which of the following is NOT a typical DBA-privileged command?

Data Backup and Recovery (D)

A 'superuser' or 'system' account usually grants the user full control over the database system.

True (A)

Give an example of a typical security policy enforced by mandatory security mechanisms.

A typical security policy could state that users with a 'Secret' clearance level can only access data classified as 'Secret' or 'Unclassified'.

What does the GRANT OPTION allow a user to do?

Grant privileges to other accounts (C)

A1 can propagate the privileges it has been granted to A2, if it grants them with GRANT OPTION.

True (A)

Which SQL command does A1 use to grant privilege to A2 for inserting and deleting tuples on EMPLOYEE and DEPARTMENT?

GRANT INSERT, DELETE ON EMPLOYEE, DEPARTMENT TO A2;

If A1 is the owner of EMPLOYEE and DEPARTMENT, it automatically has the __________.

GRANT OPTION

Match the following accounts with their capabilities:

A1 = Create base relations A2 = Insert and delete tuples in EMPLOYEE and DEPARTMENT A3 = Does not have granted privileges A4 = Not mentioned in context

What type of privileges can be assigned at the account level in a database system?

CREATE, DROP, ALTER, MODIFY, SELECT (D)

The owner of a relation can grant privileges to users on other relations they do not own.

False (B)

What SQL command is used to revoke a privilege?

REVOKE

The DBA can control access to each individual relation or view in the database at the __________ level.

relation

Which privilege allows a user to retrieve data from a relation?

SELECT (D)

Match the following privileges with their descriptions:

SELECT = Retrieve or read data MODIFICATION = Change or update data REFERENCES = Use a relation in foreign key constraints GRANT OPTION = Allow another user to grant privileges

A view can be created to restrict access to only certain fields of a relation.

True (A)

What is the purpose of the GRANT OPTION when granting privileges?

To allow the recipient to grant that privilege to others.

Study Notes

Database Security

• Database security is a broad subject encompassing legal, ethical, and systemic issues, including personal data access, policy concerns, and DBMS-level security.

• Security threats to databases can result in data integrity loss, improper data modifications, unavailability issues (legitimate users unable to access data), and confidentiality breaches (unauthorized data disclosure). Examples of breaches include data privacy act violations.

Introduction to Database Security Issues (cont'd)

• Database security isn't solely the responsibility of a DBMS. It involves multiple services, including applications, web servers, firewalls, and security systems.

• Key control methods for database security include access control (user accounts and passwords), inference control (preventing inferred data breaches from summaries or queries), flow control (restricting data flow to authorized users), and data encryption.

Two Types of Database Security Mechanisms

• Discretionary security mechanisms: Grant privileges to users for specific data access (read, write, delete). Access to files, records, or fields is controlled.

• Mandatory security mechanisms: Categorizes users and data into security classifications. Access is granted based on the classification level compared to the data's.

Database Security and the DBA

• The Database Administrator (DBA) has ultimate authority for database administration. This includes a superuser or administrator account offering powerful capabilities.

• DBA-privileged commands enable actions such as account creation, privilege granting, privilege revocation, and security level assignment.

Discretionary Access Control

• Discretionary access control in database systems usually grants privileges to users on relations (tables) based on relationships in the database or on accounts.

• Privileges can be granted at the relationship level (relation or table or view). This can involve selecting, modifying, or referencing information in a database.

• The owner of a table (relation) typically has all privileges regarding the relation. The owner can also allow others to have privileges or remove them.

Specifying Privileges Through the Use of Views

• Owners of information can create views with specific attributes.

Revocation and Propagation of Privileges

• Privileges can be revoked temporarily for specific tasks.

• Privileges can be granted with or without a propagation option. If the propagation option is included, the recipient can then grant it to others.

Simple GRANT Syntax

• A standard command for privileges and ownership is the GRANT command.

• This command involves specifying the privileges, object type, user, and granting options.

Example: Granting/Revoking Privileges

• Example scenarios demonstrate how different accounts can be granted specific privileges related to creating tables and accessing data within those tables (e.g., INSERT/DELETE privileges).

Description

Explore the essential aspects of database security, including key control methods and mechanisms to protect data integrity and confidentiality. Understand the multifaceted nature of security, involving various components beyond just the database management system. Learn about the critical role of access control, flow control, and encryption in safeguarding databases.