CCF 3251 Database Security

com

Uploaded by

williammuiakioko4

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

7 views

CCF 3251 Database Security

com

Uploaded by

williammuiakioko4

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 3

MERU UNIVERSITY OF SCIENCE AND TECHNOLOGY

P.O. Box 972-60200 – Meru-Kenya.

Tel: +254 (0)799529958, +254 (0)799529959, +254 (0)712524293
Website: www.must.ac.ke Email: [email protected]
University Examinations 2021/2022

SECOND YEAR, SECOND SEMESTER EXAMINATION FOR THE DEGREE OF

BACHELOR OF SCIENCE IN COMPUTER SECURITY AND FORENSICS
CCF 3251: DATABASE SECURITY

DATE: MAY 2022 TIME: 2 HOURS

INSTRUCTIONS: Answer Question ONE and ANY OTHER TWO Questions

QUESTION ONE
a) Define the following terms (6 Marks)
a. Data base security
b. System mechanism
c. System controls
b) Explain the importance of database security. (4 Marks)
c) Differentiate between (6 Marks)
a. Authorisation and authentication
b. Discretionary access control and mandatory access control
c. Account level and relation level privileges
d) State four roles of DBA (4 Marks)
e) Explain types of threats to data stored in a database and explain the controls
employed by database management systems to protect data from each of the threats
identified (6 Marks)
f) Write an SQL statement that gives user U1 the select privileges on branch table and
allows U1 to grant this privilege to others (4 Marks)

Meru University of Science & Technology is ISO 9001:2015 Certified

Foundation of Innovations Page 1
QUESTION TWO
a) SQL injection is a common attack that target database on web-based applications
a. Explain a typical SQL injection attack (6 Marks)
b. Explain two ways of preventing SQL injection attacks (4 Marks)
b) MUST has requested you to assist in designing its database security policy.
a. Explain the benefits of designing and implementing Database Security Policy
(4 Marks)
b. Discuss the Database Security policy Design Process ( 6 Marks)

QUESTION THREE
a. In relation to bell-lapadula model, explain its properties (4 Marks)
b. Write an SQL statement to demonstrate the following access control commands
a. Revoke (3 Marks)
b. Grant (3 Marks)
c. Explain the benefits of strong and comprehensive access control (4 Marks)
d. Discuss the different security and authorization mechanisms in database management
system (6 Marks)

QUESTION FOUR
a. Define the following vulnerabilities in a database and the mitigation strategy
(6 Marks)
a. Privilege abuse
b. The SQL injection
c. Misconfigured database
b. Explain risk management and its importances in an organisation (4 Marks)
c. Discuss the steps in data risk management process (6 Marks)
QUESTION FIVE (20 MARKS)
a. Describe four powerful capabilities of super user accounts recommended for database
administrators ( 6 Marks)
b. Explain the RAID mechanism and how it improves reliability and time performance
(6 Marks)

Meru University of Science & Technology is ISO 9001:2015 Certified

Foundation of Innovations Page 2
c. Bell and La Padula Model (BLP) and Biba model are commonly security models used
to achieve different security services. Discuss the BLP and BIBA security models and
for each state the security service it achieves. (8 Marks)

Meru University of Science & Technology is ISO 9001:2015 Certified

Foundation of Innovations Page 3

100 SAP S4HANA Data Migration Questions and Answers
No ratings yet
100 SAP S4HANA Data Migration Questions and Answers
102 pages
ISTQB Advanced Level Technical Test Analyst- Exam Insights: Q&A with Explanations
From Everand
ISTQB Advanced Level Technical Test Analyst- Exam Insights: Q&A with Explanations
SUJAN
No ratings yet
Talend Data Integration Advanced
No ratings yet
Talend Data Integration Advanced
2 pages
CCF 3251 Database Security
No ratings yet
CCF 3251 Database Security
4 pages
CCF-3251-DATABASE-SECURITY-2
No ratings yet
CCF-3251-DATABASE-SECURITY-2
3 pages
CCF 3100 Fundamentals of PC Security and Privacy 2
No ratings yet
CCF 3100 Fundamentals of PC Security and Privacy 2
3 pages
CCF-3100-FUNDAMENTALS-OF-PC-SECURITY-AND-PRIVACY-2 (1)
No ratings yet
CCF-3100-FUNDAMENTALS-OF-PC-SECURITY-AND-PRIVACY-2 (1)
3 pages
Advanced Database Systems
No ratings yet
Advanced Database Systems
3 pages
Ics 2404 Advanced Database Management Systems
No ratings yet
Ics 2404 Advanced Database Management Systems
2 pages
SPB 2304 - Database Administration Year III Semester I 2019
No ratings yet
SPB 2304 - Database Administration Year III Semester I 2019
4 pages
SPC 2304 SPI 2302 Advanced Database Management Systems Year III SEMESTER I
No ratings yet
SPC 2304 SPI 2302 Advanced Database Management Systems Year III SEMESTER I
4 pages
Cit 3201 Database Systems
No ratings yet
Cit 3201 Database Systems
3 pages
DBMS EXAM
No ratings yet
DBMS EXAM
4 pages
database
No ratings yet
database
13 pages
lecture 2b
No ratings yet
lecture 2b
23 pages
DBMS Takeaway Cat
No ratings yet
DBMS Takeaway Cat
2 pages
Sit 200-Data Base Management Systems
No ratings yet
Sit 200-Data Base Management Systems
3 pages
HNDSE 20.1F Software Security
No ratings yet
HNDSE 20.1F Software Security
2 pages
DBMS - Bba Unit 4
No ratings yet
DBMS - Bba Unit 4
16 pages
CIT-1104-MICROSOFT-ACCESS-1
No ratings yet
CIT-1104-MICROSOFT-ACCESS-1
3 pages
Chapter Seven: Advanced Concepts in Database Systems
No ratings yet
Chapter Seven: Advanced Concepts in Database Systems
35 pages
Databases
No ratings yet
Databases
23 pages
Lecture 5 - Database - Security
No ratings yet
Lecture 5 - Database - Security
68 pages
May 2021 - Pci3l
No ratings yet
May 2021 - Pci3l
83 pages
DBMS-unit 5-database security
No ratings yet
DBMS-unit 5-database security
13 pages
17332 2014 Summer Model Answer Paper
No ratings yet
17332 2014 Summer Model Answer Paper
30 pages
BBA230FPD1720172
No ratings yet
BBA230FPD1720172
5 pages
Security Criteria and Indicators of RDBMSS: A Comparative Study
No ratings yet
Security Criteria and Indicators of RDBMSS: A Comparative Study
13 pages
Database Security in DBMS... 22
No ratings yet
Database Security in DBMS... 22
15 pages
HNDSE 21.1F Software Security
No ratings yet
HNDSE 21.1F Software Security
3 pages
Lecture Database Security 2
No ratings yet
Lecture Database Security 2
23 pages
Allama Iqbal Open University, Islamabad: (Department of Computer Science)
No ratings yet
Allama Iqbal Open University, Islamabad: (Department of Computer Science)
2 pages
Week 7 Written Assignment SQL & Nosql Injections
No ratings yet
Week 7 Written Assignment SQL & Nosql Injections
5 pages
B.tech 15CS338E Database Security
No ratings yet
B.tech 15CS338E Database Security
4 pages
CE003323 ADS Exam2
No ratings yet
CE003323 ADS Exam2
5 pages
Chapter 9 - Database Security
No ratings yet
Chapter 9 - Database Security
28 pages
Database Management System
No ratings yet
Database Management System
2 pages
Chapter 6
No ratings yet
Chapter 6
35 pages
DBMS notes
No ratings yet
DBMS notes
4 pages
Report 4
No ratings yet
Report 4
24 pages
Chapter 9 Database Security
No ratings yet
Chapter 9 Database Security
83 pages
University of Mauritius: Faculty of Law and Management
No ratings yet
University of Mauritius: Faculty of Law and Management
3 pages
Bcs The Chartered Institute For It
No ratings yet
Bcs The Chartered Institute For It
4 pages
2021
No ratings yet
2021
3 pages
Batch 1 Set1
No ratings yet
Batch 1 Set1
5 pages
Lecture 5 Database Scurity PDF
No ratings yet
Lecture 5 Database Scurity PDF
13 pages
23CB301 Unit5-4
No ratings yet
23CB301 Unit5-4
11 pages
Computer Security: Principles and Practice
No ratings yet
Computer Security: Principles and Practice
30 pages
Normalization
No ratings yet
Normalization
14 pages
DBMS ch8
No ratings yet
DBMS ch8
7 pages
Database Security Concepts Approaches An
No ratings yet
Database Security Concepts Approaches An
19 pages
Bbit 304 Advanced Databases Systems
No ratings yet
Bbit 304 Advanced Databases Systems
3 pages
All Prev Yr
No ratings yet
All Prev Yr
8 pages
Database Security Issues
No ratings yet
Database Security Issues
7 pages
CSC 5301 - Paper - DB & DW Security
No ratings yet
CSC 5301 - Paper - DB & DW Security
17 pages
Week 14- Database Security
No ratings yet
Week 14- Database Security
32 pages
BIT 2317 - COMPUTER SECURITY AND CRYPTOGRAPHY - August 2012
No ratings yet
BIT 2317 - COMPUTER SECURITY AND CRYPTOGRAPHY - August 2012
3 pages
CT Merged
No ratings yet
CT Merged
104 pages
Database Management
No ratings yet
Database Management
19 pages
CIT 3302 Advanced Database Systems Main Exam
No ratings yet
CIT 3302 Advanced Database Systems Main Exam
3 pages
D12 (14 Files Merged)
No ratings yet
D12 (14 Files Merged)
165 pages
CLASS 10 IT a & b II 50% Question paper tvm
No ratings yet
CLASS 10 IT a & b II 50% Question paper tvm
4 pages
New DOCX Document.docx 1
No ratings yet
New DOCX Document.docx 1
2 pages
Cover Letter William
No ratings yet
Cover Letter William
2 pages
Untitled document.edited
No ratings yet
Untitled document.edited
2 pages
_Food Data Analytics
No ratings yet
_Food Data Analytics
34 pages
Airport DFD
100% (2)
Airport DFD
5 pages
LOB Concepts - IBM DB2
No ratings yet
LOB Concepts - IBM DB2
64 pages
DBMS Lab Manual PDF
80% (10)
DBMS Lab Manual PDF
40 pages
Databases (Microsoft Access) Grade 11
No ratings yet
Databases (Microsoft Access) Grade 11
119 pages
Dbms Complete Lab Manual
No ratings yet
Dbms Complete Lab Manual
179 pages
4725 Question Paper
No ratings yet
4725 Question Paper
1 page
Unit 3
No ratings yet
Unit 3
35 pages
llm qe
No ratings yet
llm qe
13 pages
Rdbms
No ratings yet
Rdbms
2 pages
ER Diagram Convention
100% (3)
ER Diagram Convention
3 pages
SQL Online Quiz - 3 Online Test
No ratings yet
SQL Online Quiz - 3 Online Test
3 pages
Fundamental Research of Distributed Database PDF
No ratings yet
Fundamental Research of Distributed Database PDF
9 pages
TSM Commands
100% (1)
TSM Commands
11 pages
Tech Note 1009 - How To Get The Application Server and Microsoft SQL Versions From The Galaxy Backup File
No ratings yet
Tech Note 1009 - How To Get The Application Server and Microsoft SQL Versions From The Galaxy Backup File
8 pages
Nested Transactions Nested Transactions
No ratings yet
Nested Transactions Nested Transactions
11 pages
Library Management System Using Mysql
No ratings yet
Library Management System Using Mysql
6 pages
Example of SDS
No ratings yet
Example of SDS
7 pages
Sample Data Into Splunk Enterprise
No ratings yet
Sample Data Into Splunk Enterprise
58 pages
Define Candidate Key, Alternate Key, Composite Key.: Atomicity
No ratings yet
Define Candidate Key, Alternate Key, Composite Key.: Atomicity
4 pages
Disk Organization and Disk Structure
No ratings yet
Disk Organization and Disk Structure
3 pages
IFN 554 Week 3 Tutorial v.1
No ratings yet
IFN 554 Week 3 Tutorial v.1
19 pages
TCS SQL Question
No ratings yet
TCS SQL Question
2 pages
IN Rajan's Resume
No ratings yet
IN Rajan's Resume
3 pages
Evaluasi PKM Dengan HMN by Putra
No ratings yet
Evaluasi PKM Dengan HMN by Putra
12 pages
High Authority Backlinks List Sites
No ratings yet
High Authority Backlinks List Sites
5 pages
BOPF
100% (4)
BOPF
42 pages
Appendix A - Writing SQL Statements and Stored Procedures
No ratings yet
Appendix A - Writing SQL Statements and Stored Procedures
48 pages
Data Lineage & Impact Analysis For OBIEE June25th2014
No ratings yet
Data Lineage & Impact Analysis For OBIEE June25th2014
26 pages