integrity constraints and authorization what can sql do
play

Integrity Constraints and Authorization What Can SQL Do? Define - PDF document

Jan 05, 2023 •263 likes •549 views

Integrity Constraints and Authorization What Can SQL Do? Define databases What kinds of data? (e.g., names are character strings) How to store them? (e.g., in alphabetical order) Quality control (e.g., age cannot be negative)

  1. Integrity Constraints and Authorization

  2. What Can SQL Do? • Define databases – What kinds of data? (e.g., names are character strings) – How to store them? (e.g., in alphabetical order) – Quality control (e.g., age cannot be negative) • Retrieve data from databases – Which attributes are needed? – Which tuples should be retrieved? • Access control (e.g., only instructors can assign final grades) • Interface to other language / development tools (e.g., C/C++, Java, 4GL, etc.) CMPT 354: Database I -- Integrity Constraints and Authorization 2

  3. Outline • User-define data types • More on Integrity Constraints – NOT NULL and primary key were introduced when we discussed data storage • Authorization in SQL CMPT 354: Database I -- Integrity Constraints and Authorization 3

  4. Data Types in Applications • An application may come with various data types – Example: US dollars are numeric (12, 2), while Japanese Yens are integer, user-name must be at least 5 character long – Capturing application constraints • Can we create data types in databases to reflect the application constraints? CMPT 354: Database I -- Integrity Constraints and Authorization 4

  5. User-Defined Types • create type construct in SQL Server 2005 creates user-defined type create type Dollars from numeric (12,2) not null drop type Dollars • create domain construct in SQL-92 creates user-defined domain types create domain person_name char(20) not null • Domains can have constraints, such as not null, specified on them CMPT 354: Database I -- Integrity Constraints and Authorization 5

  6. Domains as Integrity Constraints • New domains can be created from existing data types (not directly supported by SQL Server 2005) create domain Dollars numeric(12, 2) create domain Pounds numeric(12,2) • Cannot assign or compare a value of type Dollars to a value of type Pounds – However, we can convert type (should also multiply by the dollar-to-pound conversion-rate) (cast r.A * rate as Pounds) CMPT 354: Database I -- Integrity Constraints and Authorization 6

  7. Large-Object Types • Large objects (photos, videos, CAD files, etc.) are stored as a large object : – BLOB : binary large object -- object is a large collection of uninterpreted binary data (whose interpretation is left to an application outside of the database system) – CLOB : character large object -- object is a large collection of character data – What is the correspondence in SQL Server 2005? • When a query returns a large object, a pointer is returned rather than the large object itself CMPT 354: Database I -- Integrity Constraints and Authorization 7

  8. Integrity Constraints • Guard against accidental damage to the database by ensuring that authorized changes to the database do not result in a loss of data consistency – A checking account must have a balance no less than 0 – The salary of a bank employee must be at least $7.25 an hour – A customer must have a (non-null) phone number • In what situations authorized changes to the database may result in a lost of data consistency? CMPT 354: Database I -- Integrity Constraints and Authorization 8

  9. Constraints on a Single Relation • not null • primary key • unique • check (P), where P is a predicate CMPT 354: Database I -- Integrity Constraints and Authorization 9

  10. The Uniqueness Constraint unique (A 1 , A 2 , …, A m ) • The unique specification states that the attributes A 1 , A 2 , … A m form a candidate key – Key: no two tuples have the same value on the key attributes • Generally, null value is allowed in candidate key attributes – Primary key does not allow null value CMPT 354: Database I -- Integrity Constraints and Authorization 10

  11. The Check Clause • check (P), where P is a predicate • Example: Declare branch_name as the primary key for branch and ensure that the values of assets are non-negative create table branch ( branch_name char (15) , char (30), branch_city integer , assets primary key ( branch_name ) , check ( assets >= 0)) CMPT 354: Database I -- Integrity Constraints and Authorization 11

  12. The Check Clause • The check clause in SQL-92 permits domains to be restricted – Use check clause to ensure that an hourly_wage domain allows only values greater than a specified value create domain hourly_wage numeric(5,2) constraint value_test check(value >= 7.25) – The domain has a constraint ensuring that hourly_wage is at least 7.25 – The clause constraint value_test is optional • Useful to indicate which constraint an update violated CMPT 354: Database I -- Integrity Constraints and Authorization 12

  13. Referential Integrity • Ensure that a value that appears in one relation for a given set of attributes also appears for a certain set of attributes in another relation – Example: If “Perryridge” is a branch name appearing in one of the tuples in the account relation, then there exists a tuple in the branch relation for branch “Perryridge” CMPT 354: Database I -- Integrity Constraints and Authorization 13

  14. More about Keys • A unique clause lists attributes that comprise a candidate key – A candidate key can be appointed as the primary key • The primary key clause lists attributes that comprise the primary key – A table can have only one primary key • The foreign key clause lists the attributes that comprise the foreign key and the name of the relation referenced by the foreign key – By default, a foreign key references the primary key attributes of the referenced table CMPT 354: Database I -- Integrity Constraints and Authorization 14

  15. Referential Integrity – Example create table customer (customer_name char(20), customer_street char(30), customer_city char(30), primary key (customer_name )) create table branch (branch_name char(15), branch_city char(30), assets numeric(12,2), primary key (branch_name )) CMPT 354: Database I -- Integrity Constraints and Authorization 15

  16. Referential Integrity – Example (2) create table account (account_number char(10), branch_name char(15), balanceinteger, primary key (account_number), foreign key (branch_name) references branch ) create table depositor (customer_name char(20), account_number char(10), primary key (customer_name, account_number), foreign key (account_number ) references account, foreign key (customer_name ) references customer ) CMPT 354: Database I -- Integrity Constraints and Authorization 16

  17. Assertions • A predicate expressing a condition that we wish the database always to satisfy create assertion <assertion-name> check <predicate> – Not supported in SQL Server 2005 • When an assertion is made, the system tests it for validity, and tests it again on every update that may violate the assertion – This testing may introduce a significant amount of overhead; hence assertions should be used with great care CMPT 354: Database I -- Integrity Constraints and Authorization 17

  18. Assertion Example • Every loan has at least one borrower who maintains an account with a minimum balance of $1000.00 create assertion balance_constraint check (not exists ( select * from loan where not exists ( select * from borrower, depositor, account where loan.loan_number = borrower.loan_number and borrower.customer_name = depositor.customer_name and depositor.account_number = account.account_number and account.balance >= 1000))) CMPT 354: Database I -- Integrity Constraints and Authorization 18

  19. Tips: Round-about FOR-ALL • SQL does not have a “for all X, P(X)” construct • Asserting “for all X, P(X)” is achieved in a round-about fashion using not exists X such that not P(X) CMPT 354: Database I -- Integrity Constraints and Authorization 19

  20. Assertion Example (2) • The sum of all loan amounts for each branch must be less than the sum of all account balances at the branch create assertion sum_constraint check (not exists (select * from branch where (select sum(amount) from loan where loan.branch_name = branch.branch_name ) >= (select sum (amount ) from account where loan.branch_name = branch.branch_name ))) CMPT 354: Database I -- Integrity Constraints and Authorization 20

  21. Authorization • Read - allow reading, but not modification of data • Insert - allow insertion of new data, but not modification of existing data • Update - allow modification, but not deletion of data • Delete - allow deletion of data CMPT 354: Database I -- Integrity Constraints and Authorization 21

  22. Authorization on Schema Access • Index - allow creation and deletion of indices • Resources - allow creation of new relations • Alteration - allow addition or deletion of attributes in a relation • Drop - allow deletion of relations CMPT 354: Database I -- Integrity Constraints and Authorization 22

  23. Authorization in SQL • The grant statement is used to confer authorization grant <privilege list> on <relation name or view name> to <user list> • <user list> is: – a user-id – public , which allows all valid users the privilege granted – A role (to be discussed later) CMPT 354: Database I -- Integrity Constraints and Authorization 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Integrity Constraints In the electrical domain, what if we predict that a light should be on, but

Integrity Constraints In the electrical domain, what if we predict that a light should be on, but

Integrity Constraints In the electrical domain, what if we predict that a light should be on, but observe that it isnt? What can we conclude? We will expand the definite clause language to include integrity constraints which are rules that

410 views • 16 slides
Integrity Constraints In the electrical domain, what if we predict that a light should be on,

Integrity Constraints In the electrical domain, what if we predict that a light should be on,

Integrity Constraints In the electrical domain, what if we predict that a light should be on, but observe that it isnt? What can we conclude? We will expand the definite clause language to include integrity constraints which are rules

629 views • 16 slides
Module 5: Implementing Data Integrity Overview Types of Data Integrity Enforcing Data

Module 5: Implementing Data Integrity Overview Types of Data Integrity Enforcing Data

Module 5: Implementing Data Integrity Overview Types of Data Integrity Enforcing Data Integrity Defining Constraints Types of Constraints Disabling Constraints Using Defaults and Rules Deciding Which Enforcement Method

260 views • 23 slides
Clark-Wilson Integrity Model Integrity defined by a set of constraints Data in a

Clark-Wilson Integrity Model Integrity defined by a set of constraints Data in a

Clark-Wilson Integrity Model Integrity defined by a set of constraints Data in a consistent or valid state when it satisfies these Example: Bank D todays deposits, W withdrawals, YB yesterdays balance, TB todays balance

1.06k views • 59 slides
CSCI 127 Introduction to Database Systems Integrity Constraints and Functional Dependencies

CSCI 127 Introduction to Database Systems Integrity Constraints and Functional Dependencies

CSCI 127 Introduction to Database Systems Integrity Constraints and Functional Dependencies CSCI 127: Introduction to Database Systems Integrity Constraints Purpose: Prevent semantic inconsistencies in data total savings + checking

1.01k views • 64 slides
Design, Constraints and Integrity Dino Dini Lecturer Video Game Programming, IGAD Faculty

Design, Constraints and Integrity Dino Dini Lecturer Video Game Programming, IGAD Faculty

Design, Constraints and Integrity Dino Dini Lecturer Video Game Programming, IGAD Faculty Academy for Digital Entertainment NHTV University of Applied Sciences Breda Netherlands What is design? Design, Constraints and Integrity Dino Dini

557 views • 52 slides
Search-Based Testing of Relational Schema Integrity Constraints Across Multiple Database

Search-Based Testing of Relational Schema Integrity Constraints Across Multiple Database

Search-Based Testing of Relational Schema Integrity Constraints Across Multiple Database Management Systems Gregory M. Kapfhammer 1 &amp; Phil McMinn 2 &amp; Chris J. Wright 2 1 Allegheny College, USA 2 University of Sheffield, UK Sixth IEEE

1.82k views • 179 slides
KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY Blockchain &amp; Security Ruth Crowell, Chief Executive Asia Pacific Precious Metals

460 views • 10 slides
Outline Active elements CS 235: Maintain database integrity and consistency. Part

Outline Active elements CS 235: Maintain database integrity and consistency. Part

Outline Active elements CS 235: Maintain database integrity and consistency. Part of database schema. Introduction to Databases Constraints Svetlozar Nestorov Lecture Notes #13 Constraints Constraint Types

184 views • 4 slides
Authorization the permission or power given to sb to do sth: enter a security area without

Authorization the permission or power given to sb to do sth: enter a security area without

Authorization the permission or power given to sb to do sth: enter a security area without authorization Authorization in Oxford Advanced Learner's Dictionary Object-oriented Databases authorization is the concept of allowing

70 views • 6 slides
Security and Authorization [R&amp;G] Chapter 21 CS432 1 Introduction to DB Security

Security and Authorization [R&amp;G] Chapter 21 CS432 1 Introduction to DB Security

Security and Authorization [R&amp;G] Chapter 21 CS432 1 Introduction to DB Security Secrecy: Users should not be able to see things they are not supposed to. E.g., A student cant see other students grades. Integrity: Users

522 views • 8 slides
CS411 Database Systems Foreign Keys Local and Global Constraints 06: SQL Triggers Kazuhiro

CS411 Database Systems Foreign Keys Local and Global Constraints 06: SQL Triggers Kazuhiro

Constraints &amp; Triggers CS411 Database Systems Foreign Keys Local and Global Constraints 06: SQL Triggers Kazuhiro Minami Integrity Constraints in SQL Constraints and Triggers New information added to a database could be wrong in a

277 views • 10 slides
Authorization We will use the terms authorization and access control interchangeably

Authorization We will use the terms authorization and access control interchangeably

Authorization We will use the terms authorization and access control interchangeably Authorization answers the question who is allowed to do what ? A first step in the development of an access control system is the

651 views • 53 slides
1 Travel Authorization and Expense Process 1. Introduction 2. Travel Authorization 3. Travel

1 Travel Authorization and Expense Process 1. Introduction 2. Travel Authorization 3. Travel

1 Travel Authorization and Expense Process 1. Introduction 2. Travel Authorization 3. Travel Expense 4. Travel Regulations 2 Travel Authorization (See Next Slide for Detailed Steps) 2. Trip Information goes here 1. Budgetary Coding goes

319 views • 11 slides
Molina Healthcare Prior Authorization Prior Authorization is a request for prospective review. It

Molina Healthcare Prior Authorization Prior Authorization is a request for prospective review. It

Molina Healthcare Prior Authorization Prior Authorization is a request for prospective review. It is designed to : Assist in benefit determination Prevent unanticipated denials of coverage Create a collaborative approach to

187 views • 18 slides
Work Authorization Documents Work Authorization Document Control Account Information Control

Work Authorization Documents Work Authorization Document Control Account Information Control

Work Authorization Documents https://cametoolbox.fnal.gov/Project/WADReports?ProjectName=HL-L... Work Authorization Documents Work Authorization Document Control Account Information Control Account Manager: 10629N Nobrega, Fred Control

56 views • 5 slides
The M in LAMP: MySQL CSCI 470: Web Science Keith Vertanen Overview MySQL Setup, using

The M in LAMP: MySQL CSCI 470: Web Science Keith Vertanen Overview MySQL Setup, using

The M in LAMP: MySQL CSCI 470: Web Science Keith Vertanen Overview MySQL Setup, using console Data types Creating users, databases and tables SQL queries INSERT, SELECT, DELETE, WHERE, ORDER BY, GROUP BY, LIKE, LIMIT,

381 views • 22 slides
Storing Data Review Data collection is an important issue Dirty data Multiple

Storing Data Review Data collection is an important issue Dirty data Multiple

Storing Data Review Data collection is an important issue Dirty data Multiple sources Data collection Data consolidation Data cleaning Data integration CMPT 354: Database I -- Storing Data 2 What Is the Next

272 views • 23 slides
CSE306 Software Quality in Practice Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall git

CSE306 Software Quality in Practice Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall git

CSE306 Software Quality in Practice Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall git distributed version control system index local remote stash workspace staging repository repository git clone dhcp020-209-034:git alphonce$

628 views • 35 slides
CSE410 aka CSE306 Software Quality Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall

CSE410 aka CSE306 Software Quality Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall

CSE410 aka CSE306 Software Quality Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall http:/ /www.cse.buffalo.edu/faculty/alphonce/SP17 /CSE410 https:/ /piazza.com/class/iybn33z3aro2p git distributed version control system index

663 views • 35 slides
Data Management Systems Access Methods Data representation in memory Pages and Blocks

Data Management Systems Access Methods Data representation in memory Pages and Blocks

Data Management Systems Access Methods Data representation in memory Pages and Blocks Indexing Slotted pages Access Methods in context Records Compression Gustavo Alonso Institute of Computing Platforms Department of Computer

688 views • 43 slides
Today Edge detection and matching process the image gradient to find curves/contours

Today Edge detection and matching process the image gradient to find curves/contours

1/25/2017 Edges and Binary Image Analysis Thurs Jan 26 Kristen Grauman UT Austin Today Edge detection and matching process the image gradient to find curves/contours comparing contours Binary image analysis blobs and

976 views • 60 slides
Sc Scaling aling Fac acebo book k The presenta5on addresses three subjects: 1)

Sc Scaling aling Fac acebo book k The presenta5on addresses three subjects: 1)

Sc Scaling aling Fac acebo book k The presenta5on addresses three subjects: 1) What are the difficul0es inherent in scaling Facebook? 2) How has Facebooks so=ware evolved

561 views • 16 slides
More manifestos In 1990 Stonebraker responded to Atkinsons 1989 database manifesto with The

More manifestos In 1990 Stonebraker responded to Atkinsons 1989 database manifesto with The

More manifestos In 1990 Stonebraker responded to Atkinsons 1989 database manifesto with The Third-Generation Database System Manifesto with guidelines concerning future development of relational DBMS to allow them to remain dominant Two

619 views • 24 slides

More recommend