Virtual Private Databases Dr. Gabriel. 2 Overview of Virtual Private Databases A VPD deals with data access VPD controls data access at the row or column.

Slides:



Advertisements
Similar presentations
Basic SQL Introduction Presented by: Madhuri Bhogadi.
Advertisements

PL/SQL. Introduction to PL/SQL PL/SQL is the procedure extension to Oracle SQL. It is used to access an Oracle database from various environments (e.g.
یا ذالامن و الامان. Virtual Private Database Mohammad Amin Sabbaghian.
Fundamentals, Design, and Implementation, 9/e Chapter 7 Using SQL in Applications.
SQL DDL constraints Restrictions on the columns and tables 1SQL DDL Constraints.
DAT702.  Standard Query Language  Ability to access and manipulate databases ◦ Retrieve data ◦ Insert, delete, update records ◦ Create and set permissions.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 6 Virtual Private Databases.
Database Application Security Models
SQL Basics. SQL SQL (Structured Query Language) is a special-purpose programming language designed from managing data in relational database management.
MySQL Dr. Hsiang-Fu Yu National Taipei University of Education
PHP Programming with MySQL Slide 8-1 CHAPTER 8 Working with Databases and MySQL.
Databases in Visual Studio. Database in VisualStudio An MS SQL database are built in Visual studio The Name can be something like ”(localdb)\Projects”
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 6 Virtual Private Databases.
CSIS 4310 – Advanced Databases Virtual Private Databases.
Constraints  Constraints are used to enforce rules at table level.  Constraints prevent the deletion of a table if there is dependencies.  The following.
Dinamic SQL & Cursor. Why Dinamic SQL ? Sometimes there is a need to dynamically create a SQL statement on the fly and then run that command. This can.
Dexterity | CONFIDENTIAL 2009 MRO | Analytics | Insights 1 Stored Procedures.
CHAPTER:14 Simple Queries in SQL Prepared By Prepared By : VINAY ALEXANDER ( विनय अलेक्सजेंड़र ) PGT(CS),KV JHAGRAKHAND.
SQL Server 7.0 Maintaining Referential Integrity.
SQL pepper. Why SQL File I/O is a great deal of code Optimal file organization and indexing is critical and a great deal of code and theory implementation.
Chapter 6 Additional Database Objects Oracle 10g: SQL.
SQL SQL Server : Overview SQL : Overview Types of SQL Database : Creation Tables : Creation & Manipulation Data : Creation & Manipulation Data : Retrieving.
Using Procedures & Functions Oracle Database PL/SQL 10g Programming Chapter 9.
SQL Basics. 5/27/2016Chapter 32 of 19 Naming SQL commands are NOT case sensitive SQL commands are NOT case sensitive But user identifier names ARE case.
SQL: DDL. SQL Statements DDL - data definition language –Defining and modifying data structures (metadata): database, tables, views, etc. DML - data manipulation.
Application Data and Database Activities Auditing Dr. Gabriel.
Roles & privileges privilege A user privilege is a right to execute a particular type of SQL statement, or a right to access another user's object. The.
SQL Basics. What is SQL? SQL stands for Structured Query Language. SQL lets you access and manipulate databases.
SQL Basic. What is SQL? SQL (pronounced "ess-que-el") stands for Structured Query Language. SQL is used to communicate with a database.
SQL Structured Query Language 1. Data Definition Language (DDL) is used to manage table and define data structure i.e. CREATE, ALTER, DROP Data Control.
Module 3 Designing and Implementing Tables. Module Overview Designing Tables Working with Schemas Creating and Altering Tables.
What’s a database? Data stored in a structured format that lends itself to easy manipulation and recall.
Constraints cis 407 Types of Constraints & Naming Key Constraints Unique Constraints Check Constraints Default Constraints Misc Rules and Defaults Triggers.
SQL Server 2005 Implementation and Maintenance Chapter 3: Tables and Views.
Database Fundamental & Design by A.Surasit Samaisut Copyrights : All Rights Reserved.
Visual Programing SQL Overview Section 1.
1 DBS201: More on SQL Lecture 3. 2 Agenda How to use SQL to update table definitions How to update data in a table How to join tables together.
G. Green 1.  Options include:  Script Files  already covered  APIs  last course topic  Database-Stored Code  our focus 2.
Chapter 5 : Integrity And Security  Domain Constraints  Referential Integrity  Security  Triggers  Authorization  Authorization in SQL  Views 
>> Introduction to MySQL. Introduction Structured Query Language (SQL) – Standard Database Language – Manage Data in a DBMS (Database Management System)
Altering Tables and Constraints Database Systems Objectives Add and modify columns. Add, enable, disable, or remove constraints. Drop a table. Remove.
Learningcomputer.com SQL Server 2008 –Views, Functions and Stored Procedures.
Copyright © 2013 Curt Hill Triggers The Generation of Indirect Actions.
There are two types of MySQL instructions (Data Definition Language) DDL: Create database, create table, alter table,,,. (Data Manipulation Language) DML.
Chapter 6 Virtual Private Databases
Relational Database Management System(RDBMS) Structured Query Language(SQL)
SQL Server 2012 Session: 1 Session: 12 Triggers Data Management Using Microsoft SQL Server.
Constraints and Views Chap. 3-5 continued (7 th ed. 5-7)
MySQL Tutorial. Databases A database is a container that groups together a series of tables within a single structure Each database can contain 1 or more.
Module 9: Implementing Functions. Overview Creating and Using Functions Working with Functions Controlling Execution Context.
1. Advanced SQL Functions Procedural Constructs Triggers.
Views / Session 3/ 1 of 40 Session 3 Module 5: Implementing Views Module 6: Managing Views.
1 Chapters 19 and 20  Ch. 19: By What Authority? Users Roles Grant and revoke Synonyms  Ch. 20: Changing the Oracle Surroundings Indexes Clusters Sequences.
SQL Introduction SQL stands for “Structured Query Language” and can be pronounced as “SQL” or “sequel – (Structured English.
Fundamental of Database Systems
COMP 430 Intro. to Database Systems
© 2016, Mike Murach & Associates, Inc.
Using SQL Server through Command Prompt
OER- UNIT 3 Authorization
Overview Implementing Triggers Implementing XML Schemas.
Lecturer: Mukhtar Mohamed Ali “Hakaale”
CS122B: Projects in Databases and Web Applications Spring 2017
CS122B: Projects in Databases and Web Applications Winter 2017
Chapter 8 Working with Databases and MySQL
Copyright © 2012 Pearson Education, Inc. Publishing as Prentice Hall
Introduction To Structured Query Language (SQL)
Database systems Lecture 3 – SQL + CRUD
C1. SQL BAsic.
Introduction To Structured Query Language (SQL)
SQL NOT NULL Constraint
Presentation transcript:

Virtual Private Databases Dr. Gabriel

2 Overview of Virtual Private Databases A VPD deals with data access VPD controls data access at the row or column level SQL Server 2005: use VIEW data object Oracle10g: –Specific functions

3 Overview of Virtual Private Databases (continued)

4 Shared database schema: –Containing data that belongs to different users –User view or update only data he or she owns Purposes/benefits: –Security requirements necessitate data access be restricted at row or column level –One database schema serves multiple unrelated groups or entities

5 Implementing Row- and Column-level Security with SQL Server SQL Server 2000 does not support VPDs; you can mimic their functionality Use views and expand security models

6 Implementing a VPD Using Views View object limits what users can see and do with existing data: hides columns or rows from users CREATE VIEW statement: creates data views

7 Hiding Rows Based on the Current User System function USER: –Returns database user –Used to implement row-based security Implementing row-based security with views: –Need a column in your tables for the row’s owner –Preface it with “CTL”

8 Hiding Rows Based on the Current User Example: Create table customers ( ID int not null primary key, LName varchar(50) not null, …, CtlUpdUser varchar(200) not null default user) Create view vcustomer As Select id, lname From customers Where CtlUpdUser =user

9 Row-based Security Using Access Levels Variation of both: –Application table-based security model –Application function-based security model Access levels: –0 = No access –1 = select –2 = select, insert –3 = select, insert, update

10 Row-based Security Using Access Levels (continued) Access levels (continued): –4 = select, insert, update, delete –5 = administrator access Steps: –Create the APPLICATION USERS table –Alter the CUSTOMER table to include the ACCESS CONTROL column –With the security structure in place use a view to retrieve data

11 Row-based Security Using Application Functions Steps (continued): apply privileges Drawbacks: it allows insertion, update, and deletion of records Alternatives: –Use stored procedures –Use application functions: access table list a function instead of a level

12 Row-based Security Using Application Functions create table tappusersaccess ( username varchar(200) not null primary key, AccessLevel int not null default 0 ) create table tcustomers ( ID int not null primary key, LName varchar(200) not null,..., AccessLevel int not null default 0 ) create view vcustomer as select id, lname from tcustomers where accesslevel>0 and accesslevel <=(select isnull(accesslevel,0) from tappusersaccess where username=user)

13 Row-based Security Using Application Functions create procedure pcustomerselect as select id,lname from tcustomers where accesslevel>0 and accesslevel <=(select isnull(accesslevel,0) from tappusersaccess where username=user) create procedure int as int isnull(accesslevel,0) from tappusersaccess where username=user begin delete from tcustomers where and end

14 Column-based Security (continued) Access-level control with SQL Server steps: –Create the APP_TABLES table –Create the APP_COLUMNS columns –All access to the tables must be performed with stored procedures

15 Column-based Security (continued) create table tapptables ( tableid int not null primary key, tablename varchar(200) not null ) create table tapptablecolumns ( columnid int not null primary key, tableid int not null, columnname varchar(200) not null, AccessLevel int not null default 0 ) create table tappuseraccess ( username varchar(200), accesslevel int )

16 Column-based Security (continued) alter proc pcustomerselect as int; isnull(accesslevel,0) from tappuseraccess where username=user); declare cur cursor for select columnname from tapptablecolumns a inner join tapptables b on a.tableid=b.tableid where b.tablename='tcustomers' and ' open cur fetch next from cur while begin begin select end else begin select end select fetch next from cur end close cur deallocate cur select + ' from tcustomers' execute

17 Column-based Security (continued) Column Privileges with SQL Server –set update permissions for a user/role on a particular column in a particular table Ex. grant update on customer(phone) to abc

18 Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.