Deprecated: mysql_connect(): The mysql extension is deprecated and will be removed in the future: use mysqli or PDO instead in /home/lsp4you/public_html/connect.php on line 2 LSP4YOU - Learner's Support Publications
DBMS BCA Unit-5 Transaction - Definition Transaction - Examples COMMIT and ROLLBACK Properties of a Transaction States of Transactions The Concurrent Transactions Transactions - Lost Updates Transactions - Unrepeatable Reads Transactions - Dirty Reads Transactions - Inconsistent Analysis Serialisable Schedule Serial and Interleaved Schedule Precedence Graph Algorithm Precedence Graph Construction Non Serializable Schedule Locking Protocol Locks and Types of Locks Binary Locks Multiple-Mode Locks Shared and Exclusive Locks Two Phase Locking (2PL) Types of Two Phase Locking Database Security Goals Types of Database Security Threats to Databases Database Security & Authorization Subsystem Discretionary Security Mechanisms Mandatory Security Mechanisms Control Measures Access Control Inference Control Flow Control Data Encryption Database Security and the DBA DBA - Privileged Commands DBA Role Access Control, User Accounts and Database Audits System Log Database Audit Audit Trail Sensitive Data and Types of Disclosures Sensitive Data - Classification Factors Factors - Data is Safe Discretionary Access Control in a Database Account Level Privileges Relation Level Privileges Access Matrix Model Privileges on Relations


Factors - Data is Safe

It is the responsibility of the database administrator and security administrator to collectively enforce the security policies of an organization.

The three most important factors to check whether the Data is safe or not are :

  1. Data Availability

    2. If a user is updating a field, then this field becomes inaccessible and other users should not be able to view this data. This blocking is only temporary and only to ensure that no user sees any inaccurate data. This is typically handled by the concurrency control mechanism.

  2. Access Acceptability

    3. Data should only be revealed to authorized users. A database administrator may also deny access to a user request even if the request does not directly access a sensitive data item, on the grounds that the requested data may reveal information about the sensitive data that the user is not authorized to have.

  3. Authenticity Assurance

    4. Before granting access, certain external characteristics about the user may also be considered. For example, a user may only be permitted access during working hours. The system may track previous queries to ensure that a combination of queries does not reveal sensitive data. The latter is particularly relevant to statistical database queries.