write 400–600 words that respond to the following questions with your thoughts,

Question

write 400–600 words that respond to the following questions with your thoughts, ideas, and comments. This will be the foundation for future discussions by your classmates. Be substantive and clear, and use examples to reinforce your ideas:

Databases exist to allow for the easy storage and retrieval of data, but not every user should have access to all data in the database. Your boss has asked you to describe how security can be implemented in the database to protect the sensitive data and allow some users to see certain data while others are restricted from seeing the data. To help understand Database Security mechanisms, provide your input to the following:

Describe Data Control Language, and how the GRANT and REVOKE statement can be used to implement access control.

Describe the function and use of database roles in the implementation of access control.

Describe the public role and how it can eliminate all access control that can be implemented.

Describe how views can be used to enhance the security of data in a database.

Explanation / Answer

Data is nothing but some information either it is personal or public. If it is privite We need to secure database,and allowing that database who can view and what kind of access should be given.For example,some of the users who were accessing database have left, still they have access. In tis situation we need to remove their access.

Here comes the DCL languages which used to control the user access to the database and other elements of data. Based on those languages we can give different levels of access.

GRANT
GRANT provides the privileges on the database objects. These privileges includes select, delete, update and insert on the database tables and views. But for the procedures, functions it gives select privileges.Based on GRANT we can give ither give all the privileges or any one. The syntax of GRANT is as below:

Here is the syntax of GRANT:
GRANT privilege_name
ON object_name
TO {user_name |PUBLIC |role_name}
[WITH GRANT OPTION];

REVOKE

REVOKE is used to remove the privileges on given on the database objects. Based on this We can remove all the privileges or remove one.

Protecting data is the priority issue of most large organizations. As the number of users are high maintaining such a system is time-consuming. RBAC(Role Based Access Control) can be tough to design and implement, and it is secure to a company's business model.ROLES are nothing but a set of privileges grouped together to maintain integrity of data.

In database using views we can easily reduce the complexity and limit their ability to access data. Generally A view uses the results of query and dynamically creates an artificial database table.Views provides security. By using view we can make limit the data that to see in a table. Let us consider For example, in employees table wish to provide some users with access to the records, then we can create a view that contains only those records. This is simple and we can archive secxurity.

Related Questions

Navigate

• Browse (All)
• Browse W
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.