Deck 11: Database Control Issues: Security, Backup and Recovery, Concurrency

Passwords should appear on the terminal screen when they are typed in.

With the combination of the logical view and the SQL GRANT command, users either individually or in groups can be restricted to accessing only certain database tables or only certain data within a database table.

A computer virus is a malicious piece of software that has the goal of damaging hardware as a means of breaching data security.

Data that has been encrypted has to be decrypted to be used again.

The SQL GRANT command is used both to control access to the database and to retrieve data.

A computer virus attack is the computer version of the old concept of "wiretapping."

Stealing disks is a method of breaching computer security.

Unauthorized data access and unauthorized data modification are two types of data security breaches.

Controlled access to the computer system is a method of breaching security.

Passwords should not be so difficult to remember that the person herself has to write them down, which is security exposure in itself because someone else could potentially see it.

Damaged hardware can result in unusable or unavailable data.

In public key encryption, one key is used to encrypt the data and another key is used to decrypt the data.

Biometric systems limit personnel access to computer rooms based on something they know, such as a secret code to be punched in.

In public key encryption, the private key is used for encrypting the data and the public key is used for decrypting it.

The only use for data encryption is when data is transmitted on a telecommunications line.

Using an option of the SQL GRANT command, this person with access to data can in turn grant other people access to the same data.

Recommended places to locate a mainframe computer or a cluster of servers include a building's basement and ground floor.

Versioning is a way of dealing with concurrent updates without using locks.

A hot site consists of hardware similar to yours so that you can be up and running again quickly after a disaster.

Grand Travel Airlines has a centralized, mainframe-based information systems environment at its headquarters with telecommunications links to a server at each airport that it services. Each server, in turn, controls a LAN that includes a microcomputer at each check-in counter and gate. Check-in and other data taken in at the counters and gates is immediately transmitted to the mainframe at headquarters. Grand Travel maintains a relational database that includes data about its airplanes, pilots, flights, passengers, and reservations. It takes reservations over the Internet from travel agents and directly from passengers.
a. Devise a data security strategy for Grand Travel Airlines, incorporating appropriate data security measures.
b. Devise a backup and recovery strategy for Grand Travel Airlines. Bear in mind that its reservation system must be constantly operational so that it can check passengers in for flights and so that it does not lose future business.
c. Grand Travel does not wish to overbook its flights. Consider a situation in which there are 23 seats left on a particular flight on a particular date. Reservations agent Miller begins talking to a customer about the flight and reads the record showing 23 seats left. Two minutes later, agent Thompson begins talking to a customer about the very same flight and also reads that there are 23 seats left. Then, agent Miller's customer decides to book 4 seats on the flight, then agent Thompson's customer decides to book 7 seats on the flight.
i. What will happen in the absence of locks?
ii. What can happen in the presence of locks if the two agents are each trying to book multiple flights (or multiple legs of trips) for the two customers and access and lock the flights in different orders? What can be done about this?
iii. How would versioning handle these situations?

Backward recovery uses as inputs the log (starting with the last change to the database) and the last backup taken.

The usual solution to the lost update problem is to introduce what are known as hardware "locks."

Deadlock cannot happen if locks are used to prevent concurrent update problems.

Locks should never be used because of the possibility of deadlock.

The Central Zoo maintains a modest information systems environment with a server and a LAN that connects all of the zoo's departments. It maintains a relational database that includes data about its animals, employees, members, and about a variety of infrastructure entities including the animals' enclosures.
a. Devise a data security strategy for the Central Zoo, incorporating appropriate data security measures.
b. Devise a backup and recovery strategy for the Central Zoo.
c. While Central Zoo's database is not subject to heavy update activity, it is possible that two employees could try to update the same record at the same time. Devise a strategy that will avoid data problems when this happens.

In the "mirrored databases" backup and recovery technique, two copies of the entire database are maintained and both are updated simultaneously.

A proxy server is firewall software that resides in the Web server.

Forward recovery uses as inputs the log and the last backup taken.

The lost update problem can occur when two people attempt to update the same data simultaneously.

A basic backup and recovery task is maintaining a disk log or journal of all database data retrieval operations.

Forward recovery is used to recreate a table that was destroyed.

A transaction log records the value of a piece of data just before it is changed and the value just after it is changed.

In Secure Socket Layer (SSL) technology on the World Wide Web, a public key encryption algorithm is used to securely transfer a key for a private key encryption algorithm.

A signature is a portion of a computer virus' code that is used by antivirus software to identify it.

Deadlock is usually handled by detection rather than by prevention.

Backward recovery is an alternative to forward recovery for recreating a table that was destroyed.