Deck 5: Database and Cloud Security

A view cannot provide restricted access to a relational database so it cannot
be used for security purposes.

Fixed server roles operate at the level of an individual database.

An IDS is a set of automated tools designed to detect unauthorized access to
a host system.

An IPS incorporates IDS functionality but also includes mechanisms
designed to block traffic from intruders.

The cloud carrier is useful when cloud services are too complex for a cloud
consumer to easily manage.

The CSP can provide backup at multiple locations,with reliable failover
and disaster recovery facilities.

A foreign key value can appear multiple times in a table.

Business continuity consists of security services that allocate access,
distribute,monitor,and protect the underlying resource services.
.

Encryption is a pervasive service that can be provided for data at rest in the
cloud.
.

A single countermeasure is sufficient for SQLi attacks.

T F 4.The value of a primary key must be unique for each tuple of its table.

SQL Server allows users to create roles that can then be assigned access
rights to portions of the database.

The database management system makes use of the database description
tables to manage the physical database.
.

To create a relationship between two tables,the attributes that define the
primary key in one table must appear as attributes in another table,where they are referred to as a foreign key.

The information transfer path by which unauthorized data is obtained is referred to as an ___________ channel.

A __________ is a suite of programs for constructing and maintaining the database and for offering ad hoc query facilities to multiple users and applications.

In a relational database columns are referred to as _________.

In a ___________ administration a small number of privileged users may grant and revoke access rights.

With ___________ administration the owner (creator)of a table may grant and revoke access rights to the table.

The __________ is responsible both for the cloud infrastructure and for the control of data and operations within a public cloud.

A _________ is the result of a query that returns selected rows and columns from one or more tables.

In a discretionary access control environment database users are classified into three broad categories: administrator,end user other than application owner,and __________.

In addition to granting and revoking access rights to a table,in a ___________ administration the owner of the table may grant and revoke authorization rights to other users,allowing them to grant and revoke access rights to the table.

__________ is a standardized language that can be used to define schema,manipulate,and query data in a relational database.

The __________ cloud infrastructure is operated solely for an organization.

The _________ model provides a predefined environment for the cloud subscriber that is shared with other tenants,typically through tagging data with a subscriber identifier.

A __________ cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services.

_________ is a model for enabling ubiquitous,convenient,on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.

A __________ language provides a uniform interface to the database for users and applications.