PK
Uploaded byPrakash Kumar
PPTX, PDF609 views

Security and Integrity violations, Authorisation and views, Integrity Constant

The document discusses the importance of security and integrity in database management systems, emphasizing the need to protect databases from unauthorized access and maintain data consistency. It covers various security measures at different levels, including physical, human, operating system, and database system security, as well as the use of authorization and views to control access to data. Additionally, it outlines integrity constraints that ensure authorized changes do not lead to data inconsistency, with a focus on key and domain constraints for efficient testing.

Engineering
Related topics:
Data Security

Embed presentation

Download to read offline
Thank You! L ogistics E d i t t h i s t e x t h e r e DBMS Seminar Security & Integrity violations Authorization and views Integrity constraints Presented By : Prakash Kumar MCA/25023/22
Security and Integrity Violations The data stored in the database needs to be protected from unauthorized access, malicious destruction or alteration, and accidental introduction of inconsistency. Misuse of the database can be categorized as being either intentional (malicious) or accidental. Accidental loss of data consistency may result from:  Crashes during transaction processing  Abnormalities due to concurrent access to the database  Abnormalities due to the distribution of data over several computers
It is easier to protect accidental loss of data consistency than to protect against malicious access to the database. Among the forms of malicious access are the following:  Unauthorized reading of data (theft of information)  Unauthorized modification of data  Unauthorized destruction of data Absolute protection of the database from malicious abuse is not possible, but the cost of the perpetrator can be made sufficiently high to deter most if not all attempts to access the database without proper authority. The term database security usually refers to security from malicious access, while integrity refer to the avoidance of accidental loss of consistency. In practice, the dividing line between security and integrity is not always clear. We shall use the term security to refer to both security and integrity in cases where the distinction between these concepts is not essential.
To protect the database, security measures must be taken at several levels:  Physical: The site or sites containing the computer systems must be physically secured against armed or surreptitious entry by intruders.  Human: Authorization of users must be done carefully to chance of authorized user giving access to an intruder in exchange for a bribe or other favors.  Operating system: No matter how secure the database system is, in operating system security may serve as a means of unauthorized access to the database. Since almost all database systems allow remote access through terminals or networks, software-level security within the operation system is as important as physical security.  Database system: Some authorized database system users may be authorized to access only a limited portion of the database. Other users may be allowed to issue queries, but may be forbidden to modify the data. It is the responsibility of the database system to ensure that these restrictions are not violated.
Authorization and Views The concept of views is a means of providing a user with a “personalized” model of the database. A view can hide data that a user does not need to see. The ability of views to hide data serves both to simplify usage of the system and to enhance security. System usage is simplified since the user is allowed to restrict attention to the data of interest. Security is provided if there is a mechanism to restrict the user to his or her personal view or views. Relational database systems typically provide security at two levels:  Relation: A user may be permitted or denied direct access to a relation  View: A user may be permitted or denied access to data appearing in a view. Although a user may be denied direct access to a relation, the user may be able to access part of that relation through a view. Thus, a combination of relational level security and view level security can be used to limit a user’s access to precisely the data that user needs.
A user may have several forms of authorization on part of the database. Among these are the following:  Read authorization, which allows reading, but not modification of data  Insert authorization, which allows insertion of new data, but not the modification of existing data  Update authorization, which allows modification, but not deletion, of data  Delete authorization, which allows deletion of data.
In addition to the above forms of authorization for access to data, a user may be granted authorization to modify the database scheme:  Index authorization, which allow creation and deletion of indices  Resources authorization, which allow the creation new relations  Alteration authorization, which allow the addition or deletion of attributes in a relation  Drop authorization, which allows the deletion of relations The drop and delete authorization differ in that delete authorization allows deletion of tuples only. If a user deletes all tuples of a relation, the relation still exists, but it is empty. If a relation is dropped, it no longer exists.
Integrity constraints Integrity constraints provide a means of ensuring that changes made to the database by authorized users do not result in a loss of data consistency. In the network model and the E-R model, we saw integrity constraints in the form of:  Key declarations, the stipulation that certain attributes form a candidate key for a given entity set constrains the set of legal insertions.  Form of a relationship, many-to–many, one–to–many, one–to– one. A one-to– one or one–to-many relationship restricts the set of legal relationships among entities of a collection of entity sets. Another example of an integrity constraint is set retention in the network model.
In general, an integrity constraint can be an arbitrary predicate pertaining to the database. However, arbitrary predicates may be costly to test. Thus, we usually limit ourselves to integrity constraints that can be tested with minimal overhead. This is the purpose behind dependency – preserving decompositions of relation schemes. Recall that in a dependency – preserving decomposition, it is possible to test for satisfaction of the data dependencies without the need to compute any joins. Domain – key normal is an ideal design from the point of view of efficient testing of integrity constraints, since the only forms of constraint that need be tested are key constraints and domain constraints. If the key and domain constraints are satisfied, and the database scheme is in DKNF, then all integrity constraints on the database are satisfied. Key constraints are one of the most easily tested forms of consistency constraint, especially if an index is maintained on that candidate key. During the process of inserting a record into the database a lookup must be performed using the index and any duplicate key values that may exist are found. Since not all index search keys are candidate keys for the relation (Indices may be for secondary keys), we need to declare an index to be either  Unique: Only one record may exist for a key value  Non-unique: Multiple records are allowed to have the same key value
Another form of constraint that is easy to test is domain constraints. Testing domain constraints is analogous to runtime – type checking in a programming language. A form of constraint closely related to domain constraints involves the admissibility of null values. We may forbid null values for certain attributes but allow them for others. Relatively few systems allow the expression of constraints that are more complex than key declarations or domain constraints. The original proposal for the SQL language included a general purpose construct called the assert statement for the expression of integrity constraints.
An assertion pertaining to a single relation takes the form: For example, if we wish to define an integrity constraint that no account balance is negative we write: In its most general form, the assert statement takes the form:
Thank You

More Related Content

PPTX
Distributed database
byReachLocal Services India
 
PPTX
Introduction to Distributed System
bySunita Sahu
 
PPTX
DBMS and its Models
byAhmadShah Sultani
 
PDF
Logical design vs physical design
byMd. Mahedi Mahfuj
 
PPTX
Database System Architectures
byInformation Technology
 
PPTX
View of data DBMS
byRahul Narang
 
PPTX
Deadlock dbms
byVardhil Patel
 
PPT
Data models
byUsman Tariq
 
Distributed database
byReachLocal Services India
 
Introduction to Distributed System
bySunita Sahu
 
DBMS and its Models
byAhmadShah Sultani
 
Logical design vs physical design
byMd. Mahedi Mahfuj
 
Database System Architectures
byInformation Technology
 
View of data DBMS
byRahul Narang
 
Deadlock dbms
byVardhil Patel
 
Data models
byUsman Tariq
 

What's hot

PDF
Data Models
byRituBhargava7
 
PPT
Data Base System Application - Unit 7
byAmit Chandra
 
PPTX
Integrity Constraints
bymadhav bansal
 
PDF
Lesson 1: Introduction to DBMS
byAmrit Kaur
 
PPTX
Distributed dbms architectures
byPooja Dixit
 
PPTX
Data warehouse physical design
byEr. Nawaraj Bhandari
 
PPTX
Dbms architecture
byShubham Dwivedi
 
PPTX
Requirements elicitation
bySyed Zaid Irshad
 
PPTX
Introduction to RDBMS
byMerlin Florrence
 
PPTX
Role of system analyst
byKaran Chaudhary
 
PPTX
Dbms Introduction and Basics
bySHIKHA GAUTAM
 
PDF
DBTG MODEL
byRamkrishna bhagat
 
PPTX
Major issues in data mining
bySlideshare
 
PPTX
The Relational Database Model
byShishir Aryal
 
PPTX
Relational model
byDabbal Singh Mahara
 
PPTX
Security of the database
byPratik Tamgadge
 
PPTX
Concurrency Control in Database Management System
byJanki Shah
 
PPTX
Data warehouse 21 snowflake schema
byVaibhav Khanna
 
PPTX
Database management system
byShashikumar_chari
 
PPTX
data abstraction in DBMS
byBHARATH KUMAR
 
Data Models
byRituBhargava7
 
Data Base System Application - Unit 7
byAmit Chandra
 
Integrity Constraints
bymadhav bansal
 
Lesson 1: Introduction to DBMS
byAmrit Kaur
 
Distributed dbms architectures
byPooja Dixit
 
Data warehouse physical design
byEr. Nawaraj Bhandari
 
Dbms architecture
byShubham Dwivedi
 
Requirements elicitation
bySyed Zaid Irshad
 
Introduction to RDBMS
byMerlin Florrence
 
Role of system analyst
byKaran Chaudhary
 
Dbms Introduction and Basics
bySHIKHA GAUTAM
 
DBTG MODEL
byRamkrishna bhagat
 
Major issues in data mining
bySlideshare
 
The Relational Database Model
byShishir Aryal
 
Relational model
byDabbal Singh Mahara
 
Security of the database
byPratik Tamgadge
 
Concurrency Control in Database Management System
byJanki Shah
 
Data warehouse 21 snowflake schema
byVaibhav Khanna
 
Database management system
byShashikumar_chari
 
data abstraction in DBMS
byBHARATH KUMAR
 

Similar to Security and Integrity violations, Authorisation and views, Integrity Constant

PDF
Database security
bykeerthusandeepreddy
 
PPTX
chap1 (using basic SQL) khdvkdscnknknkl nkjl.pptx
byFitsumErena
 
PPT
demo2.ppt
bycrazyvirtue
 
PPTX
Database modeling and security
byNeeharika Nidadavolu
 
PDF
Security and Integrity
bylubna19
 
PPT
Security and Authorization introductory notes.ppt
bySubburamSivakumar1
 
PPTX
Database concepts
byshanthishyam
 
PDF
Database management system important topic.pdf
byamariyarana
 
PPTX
unit 5 in the database for master of Engineering
bypoonkodiraja2806
 
PDF
Ch1
bySubhankar Chowdhury
 
PDF
Ch1
bynishant choudhari
 
PPTX
gfjfhfjfkjkjhlkhlkj;ljk;lk;k;lkl jhkljlk
byahmed8790
 
PPTX
Database Introduction by Luke Lonergan
byLuke Lonergan
 
PPTX
Db for rdbms
byTech_MX
 
PPTX
Relational Database Management System part II
byKavithaA19
 
PPT
Database intro
byvarsha nihanth lade
 
PDF
Sql ch 9 - data integrity
byMukesh Tekwani
 
PPT
ch4
byKITE www.kitecolleges.com
 
PPTX
Relational Model and Relational Algebra.pptx
byKoteswari Kasireddy
 
PPT
Views and security
byfarhan amjad
 
Database security
bykeerthusandeepreddy
 
chap1 (using basic SQL) khdvkdscnknknkl nkjl.pptx
byFitsumErena
 
demo2.ppt
bycrazyvirtue
 
Database modeling and security
byNeeharika Nidadavolu
 
Security and Integrity
bylubna19
 
Security and Authorization introductory notes.ppt
bySubburamSivakumar1
 
Database concepts
byshanthishyam
 
Database management system important topic.pdf
byamariyarana
 
unit 5 in the database for master of Engineering
bypoonkodiraja2806
 
Ch1
bySubhankar Chowdhury
 
Ch1
bynishant choudhari
 
gfjfhfjfkjkjhlkhlkj;ljk;lk;k;lkl jhkljlk
byahmed8790
 
Database Introduction by Luke Lonergan
byLuke Lonergan
 
Db for rdbms
byTech_MX
 
Relational Database Management System part II
byKavithaA19
 
Database intro
byvarsha nihanth lade
 
Sql ch 9 - data integrity
byMukesh Tekwani
 
ch4
byKITE www.kitecolleges.com
 
Relational Model and Relational Algebra.pptx
byKoteswari Kasireddy
 
Views and security
byfarhan amjad
 

Recently uploaded

PDF
Introduction to Software , Product and Process
byGunjalSanjay
 
PDF
Introduction : Operating-System Services
bySanjay Gunjal
 
PPTX
UNIT 1.3-Structure of Polymers_Material Science-.pptx
byDr. Sandip Thorat
 
PDF
TU/e - 2025-2026 - Lecture Geotechnics 3 - Arkesteijn
byRuud Arkesteijn
 
PDF
22PEOIT4C_Artificial_Intelligence_UNIT_III_Notes_Final
byGuru Nanak Technical Institutions
 
PDF
Life Cycle Analysis of Electric and Internal Combustion Engine Vehicles
byUniversity Institute of Technology, Barkatullah University
 
PPTX
Embedded_Linux_ARM_Cross_Compilation_Exp.no.3.pptx
bySanjivani College of Engineering, Kopargaon, Ahmednagar, Maharashtra, India
 
PDF
CRYPTOCURRENCY FORENSICS: A COMPREHENSIVE REPORT ON TRACKING ILLICIT DIGITAL ...
byGarima Singh
 
PPTX
An Early Production Facility (EPF) is a modular, temporary system for rapidly...
byDrAdelSalem1
 
PDF
algothon event ppt from gdg on campus nsec
byasutoshkumar560
 
PPTX
Calculation of hardness of Water on Ion Exchange.pptx
byChemical Engineering Dept. NIT Rourkela-769008, Odisha, India
 
PPTX
1.2-Structure of Ceramics_ Materials Science.pptx
byDr. Sandip Thorat
 
PPTX
Web Technology Overview with list of assignments along with the technology
byYogeshDeshmukh85
 
PDF
TR095A120SPC 0.95″ AMOLED Display Module, 120×120 Resolution
bySyluxdisplay
 
PDF
TU/e - Lecture Geotechnics - Case Singelgrachtgarage-Marnix - Arkesteijn
byRuud Arkesteijn
 
PPTX
MET 464- MICRO AND AND NANO MANUFACTURING -MOD 2.pptx KTU 2019
byVINAY B
 
PDF
22PEOIT4C Artificial Intelligence unit 3 QB Final.pdf
byGuru Nanak Technical Institutions
 
PDF
BO139A454SPI 1.39″ Round AMOLED Display Module, 454×454, SPI & MIPI
bySyluxdisplay
 
PDF
Seminar topic on scaffolding and its types.pdf
byMOTOSIFSHAIKH
 
PDF
Python Frameworks for Machine Learning Labmanuel
bygomathisankariv2
 
Introduction to Software , Product and Process
byGunjalSanjay
 
Introduction : Operating-System Services
bySanjay Gunjal
 
UNIT 1.3-Structure of Polymers_Material Science-.pptx
byDr. Sandip Thorat
 
TU/e - 2025-2026 - Lecture Geotechnics 3 - Arkesteijn
byRuud Arkesteijn
 
22PEOIT4C_Artificial_Intelligence_UNIT_III_Notes_Final
byGuru Nanak Technical Institutions
 
Life Cycle Analysis of Electric and Internal Combustion Engine Vehicles
byUniversity Institute of Technology, Barkatullah University
 
Embedded_Linux_ARM_Cross_Compilation_Exp.no.3.pptx
bySanjivani College of Engineering, Kopargaon, Ahmednagar, Maharashtra, India
 
CRYPTOCURRENCY FORENSICS: A COMPREHENSIVE REPORT ON TRACKING ILLICIT DIGITAL ...
byGarima Singh
 
An Early Production Facility (EPF) is a modular, temporary system for rapidly...
byDrAdelSalem1
 
algothon event ppt from gdg on campus nsec
byasutoshkumar560
 
Calculation of hardness of Water on Ion Exchange.pptx
byChemical Engineering Dept. NIT Rourkela-769008, Odisha, India
 
1.2-Structure of Ceramics_ Materials Science.pptx
byDr. Sandip Thorat
 
Web Technology Overview with list of assignments along with the technology
byYogeshDeshmukh85
 
TR095A120SPC 0.95″ AMOLED Display Module, 120×120 Resolution
bySyluxdisplay
 
TU/e - Lecture Geotechnics - Case Singelgrachtgarage-Marnix - Arkesteijn
byRuud Arkesteijn
 
MET 464- MICRO AND AND NANO MANUFACTURING -MOD 2.pptx KTU 2019
byVINAY B
 
22PEOIT4C Artificial Intelligence unit 3 QB Final.pdf
byGuru Nanak Technical Institutions
 
BO139A454SPI 1.39″ Round AMOLED Display Module, 454×454, SPI & MIPI
bySyluxdisplay
 
Seminar topic on scaffolding and its types.pdf
byMOTOSIFSHAIKH
 
Python Frameworks for Machine Learning Labmanuel
bygomathisankariv2
 

Security and Integrity violations, Authorisation and views, Integrity Constant

  • 1.
    Thank You! L ogistics Ed i t t h i s t e x t h e r e DBMS Seminar Security & Integrity violations Authorization and views Integrity constraints Presented By : Prakash Kumar MCA/25023/22
  • 2.
    Security and Integrity Violations The datastored in the database needs to be protected from unauthorized access, malicious destruction or alteration, and accidental introduction of inconsistency. Misuse of the database can be categorized as being either intentional (malicious) or accidental. Accidental loss of data consistency may result from:  Crashes during transaction processing  Abnormalities due to concurrent access to the database  Abnormalities due to the distribution of data over several computers
  • 3.
    It is easierto protect accidental loss of data consistency than to protect against malicious access to the database. Among the forms of malicious access are the following:  Unauthorized reading of data (theft of information)  Unauthorized modification of data  Unauthorized destruction of data Absolute protection of the database from malicious abuse is not possible, but the cost of the perpetrator can be made sufficiently high to deter most if not all attempts to access the database without proper authority. The term database security usually refers to security from malicious access, while integrity refer to the avoidance of accidental loss of consistency. In practice, the dividing line between security and integrity is not always clear. We shall use the term security to refer to both security and integrity in cases where the distinction between these concepts is not essential.
  • 4.
    To protect thedatabase, security measures must be taken at several levels:  Physical: The site or sites containing the computer systems must be physically secured against armed or surreptitious entry by intruders.  Human: Authorization of users must be done carefully to chance of authorized user giving access to an intruder in exchange for a bribe or other favors.  Operating system: No matter how secure the database system is, in operating system security may serve as a means of unauthorized access to the database. Since almost all database systems allow remote access through terminals or networks, software-level security within the operation system is as important as physical security.  Database system: Some authorized database system users may be authorized to access only a limited portion of the database. Other users may be allowed to issue queries, but may be forbidden to modify the data. It is the responsibility of the database system to ensure that these restrictions are not violated.
  • 5.
    Authorization and Views Theconcept of views is a means of providing a user with a “personalized” model of the database. A view can hide data that a user does not need to see. The ability of views to hide data serves both to simplify usage of the system and to enhance security. System usage is simplified since the user is allowed to restrict attention to the data of interest. Security is provided if there is a mechanism to restrict the user to his or her personal view or views. Relational database systems typically provide security at two levels:  Relation: A user may be permitted or denied direct access to a relation  View: A user may be permitted or denied access to data appearing in a view. Although a user may be denied direct access to a relation, the user may be able to access part of that relation through a view. Thus, a combination of relational level security and view level security can be used to limit a user’s access to precisely the data that user needs.
  • 6.
    A user mayhave several forms of authorization on part of the database. Among these are the following:  Read authorization, which allows reading, but not modification of data  Insert authorization, which allows insertion of new data, but not the modification of existing data  Update authorization, which allows modification, but not deletion, of data  Delete authorization, which allows deletion of data.
  • 7.
    In addition tothe above forms of authorization for access to data, a user may be granted authorization to modify the database scheme:  Index authorization, which allow creation and deletion of indices  Resources authorization, which allow the creation new relations  Alteration authorization, which allow the addition or deletion of attributes in a relation  Drop authorization, which allows the deletion of relations The drop and delete authorization differ in that delete authorization allows deletion of tuples only. If a user deletes all tuples of a relation, the relation still exists, but it is empty. If a relation is dropped, it no longer exists.
  • 8.
    Integrity constraints Integrity constraintsprovide a means of ensuring that changes made to the database by authorized users do not result in a loss of data consistency. In the network model and the E-R model, we saw integrity constraints in the form of:  Key declarations, the stipulation that certain attributes form a candidate key for a given entity set constrains the set of legal insertions.  Form of a relationship, many-to–many, one–to–many, one–to– one. A one-to– one or one–to-many relationship restricts the set of legal relationships among entities of a collection of entity sets. Another example of an integrity constraint is set retention in the network model.
  • 9.
    In general, anintegrity constraint can be an arbitrary predicate pertaining to the database. However, arbitrary predicates may be costly to test. Thus, we usually limit ourselves to integrity constraints that can be tested with minimal overhead. This is the purpose behind dependency – preserving decompositions of relation schemes. Recall that in a dependency – preserving decomposition, it is possible to test for satisfaction of the data dependencies without the need to compute any joins. Domain – key normal is an ideal design from the point of view of efficient testing of integrity constraints, since the only forms of constraint that need be tested are key constraints and domain constraints. If the key and domain constraints are satisfied, and the database scheme is in DKNF, then all integrity constraints on the database are satisfied. Key constraints are one of the most easily tested forms of consistency constraint, especially if an index is maintained on that candidate key. During the process of inserting a record into the database a lookup must be performed using the index and any duplicate key values that may exist are found. Since not all index search keys are candidate keys for the relation (Indices may be for secondary keys), we need to declare an index to be either  Unique: Only one record may exist for a key value  Non-unique: Multiple records are allowed to have the same key value
  • 10.
    Another form ofconstraint that is easy to test is domain constraints. Testing domain constraints is analogous to runtime – type checking in a programming language. A form of constraint closely related to domain constraints involves the admissibility of null values. We may forbid null values for certain attributes but allow them for others. Relatively few systems allow the expression of constraints that are more complex than key declarations or domain constraints. The original proposal for the SQL language included a general purpose construct called the assert statement for the expression of integrity constraints.
  • 11.
    An assertion pertainingto a single relation takes the form: For example, if we wish to define an integrity constraint that no account balance is negative we write: In its most general form, the assert statement takes the form:
  • 12.

Editor's Notes

  • #2 Links: https://www.pexels.com/photo/black-sail-ship-on-body-of-water-906982/
  • #3 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #4 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #5 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #6 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #7 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #8 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #9 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #10 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #11 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/
  • #12 https://www.pexels.com/photo/man-in-bubble-jacket-holding-tablet-computer-4484078/