chap15.ppt

Database Systems: Design, Implementation, and ManagementTenth EditionChapter 15Database Administration and Security

ObjectivesIn this chapter, students will learn:That data are a valuable business asset requiring careful managementHow a database plays a critical role in an organizationThat the introduction of a DBMS has important technological, managerial, and cultural consequences for an organizationDatabase Systems, 10th Edition*

Database Systems, 10th Edition

Objectives (contd.)What the database administrators managerial and technical roles areAbout data security, database security, and the information security frameworkAbout several database administration tools and strategiesHow various technical tasks of database administration are performed with OracleDatabase Systems, 10th Edition*


Data as a Corporate Asset Data:Valuable asset that requires careful managementValuable resource that translates into informationAccurate, timely information triggers actions that enhance companys position and generate wealthDatabase Systems, 10th Edition*


Data as a Corporate Asset (contd.)Dirty dataData that suffer from inaccuracies and inconsistenciesThreat to organizationsDatabase Systems, 10th Edition*


Database Systems, 10th Edition*


Data as a Corporate Asset (contd.) Data qualityComprehensive approach to ensuring the accuracy, validity, and timeliness of the dataData profiling software Consists of programs that gather statistics and analyze existing data sourcesMaster data management (MDM) softwareHelps prevent dirty data by coordinating common data across multiple systems.



The Need for and Role of Databasesin an OrganizationDatabases predominant role is to support managerial decision making at all levelsDBMS facilitates:Interpretation and presentation of dataDistribution of data and informationPreservation and monitoring of dataControl over data duplication and useThree levels to organization management:Top, middle, operationalDatabase Systems, 10th Edition*


Introduction of a Database: Special ConsiderationsIntroduction of a DBMS is likely to have a profound impactMight be positive or negative, depending on how it is administeredThree aspects to DBMS introduction:TechnologicalManagerialCulturalOne role of DBA department is to educate end users about system uses and benefitsDatabase Systems, 10th Edition*


The Evolution of the Database Administration FunctionData administration has its roots in the old, decentralized world of the file systemAdvent of DBMS produced new level of data management sophisticationDP department evolved into information systems (IS) departmentData management became increasingly complexDevelopment of database administrator (DBA) functionDatabase Systems, 10th Edition*


The Database Environments Human ComponentEven most carefully crafted database system cannot operate without human componentEffective data administration requires both technical and managerial skillsDA must set data administration goalsDBA is focal point for data/user interactionNeed for diverse mix of skillsDatabase Systems, 10th Edition*


The DBAs Managerial RoleDBA responsible for:Coordinating, monitoring, allocating resourcesResources include people and dataDefining goals and formulating strategic plansInteracts with end user by providing data and informationEnforces policies, standards, proceduresDatabase Systems, 10th Edition*


The DBAs Managerial Role (contd.)Manages security, privacy, integrityEnsures data can be fully recoveredIn large organizations, database security officer (DSO) responsible for disaster managementEnsures data is distributed appropriatelyMakes it easy for authorized end users to access the database



The DBAs Technical RoleEvaluates, selects, and installs DBMS and related utilitiesDesigns and implements databases and applicationsTests and evaluates databases and applications



The DBAs Technical Role (contd.)Operates DBMS, utilities, and applicationsTrains and supports usersMaintains DBMS, utilities, and applications



The DBAs Role in the CloudCloud services provide: DBMS installation and updatesServer/network managementBackup and recovery operationsDBAs managerial role is largely unchangedDatabase Systems, 10th Edition*


SecuritySecuring data entails securing overall information system architectureConfidentiality: data protected against unauthorized accessIntegrity: keep data consistent and free of errors or anomaliesAvailability: accessibility of data by authorized users for authorized purposes



Security PoliciesDatabase security officer secures the system and the dataWorks with the database administratorSecurity policy: collection of standards, policies, procedures to guarantee securityEnsures auditing and complianceSecurity audit process identifies security vulnerabilitiesIdentifies measures to protect the systemDatabase Systems, 10th Edition*


Security VulnerabilitiesSecurity vulnerability: weakness in a system componentCould allow unauthorized access or cause service disruptionsSecurity threat: imminent security violationCould occur at any timeSecurity breach yields a database whose integrity is either:PreservedCorruptedDatabase Systems, 10th Edition*


Database SecurityRefers to the use of DBMS features and other measures to comply with security requirementsDBA secures DBMS from installation through operation and maintenanceAuthorization managementUser access managementView definitionDBMS access controlDBMS usage monitoringDatabase Systems, 10th Edition*


Database Administration ToolsData dictionaryCASE toolsDatabase Systems, 10th Edition*


The Data DictionaryTwo main types of data dictionaries:IntegratedStandaloneActive data dictionary is automatically updated by the DBMS with every database accessPassive data dictionary requires running a batch process Main function: store description of all objects that interact with databaseDatabase Systems, 10th Edition*


The Data Dictionary (contd.)Data dictionary that includes data external to DBMS becomes flexible toolEnables use and allocation of all of an organizations informationMetadata is often the basis for monitoring database useAlso for assigning access rights to usersDBA uses data dictionary to support data analysis and design Database Systems, 10th Edition*


CASE ToolsComputer-aided systems engineeringAutomated framework for SDLCStructured methodologies and powerful graphical interfacesFront-end CASE tools provide support for planning, analysis, and design phasesBack-end CASE tools provide support for coding and implementation phasesDatabase Systems, 10th Edition*


CASE Tools (contd.)Typical CASE tool has five componentsGraphics for diagramsScreen painters and report generatorsIntegrated repositoryAnalysis segment Program documentation generatorDatabase Systems, 10th Edition*


Developing a Data Administration Strategy Information engineering (IE) translates strategic goals into data and applicationsInformation systems architecture (ISA) is the output of IE processImplementing IE is a costly processProvides a framework that includes use of computerized, automated, and integrated toolsSuccess of information systems strategy depends on critical success factorsManagerial, technological, and corporate cultureDatabase Systems, 10th Edition*


The DBA at Work: Using Oracle for Database AdministrationTechnical tasks handled by the DBA in a specific DBMS:Creating and expanding database storage structuresManaging database objectsManaging end-user database environmentCustomizing database initialization parametersAll DBMS vendors provide programs to perform database administrative tasksDatabase Systems, 10th Edition*


Oracle Database Administration ToolsDatabase Systems, 10th Edition*


The Default LoginMust connect to the database to perform administrative tasksUsername with administrative privilegesOracle automatically creates SYSTEM and SYS user IDs with administrative privilegesDefine preferred credentials by clicking on Preferences link, then Preferred CredentialsUsername and passwords are database-specificDatabase Systems, 10th Edition*


Ensuring that the RDBMS Starts AutomaticallyDBA ensures database access is automatically started when computer turned onA service is a Windows system name for a special program that runs automaticallyPart of the operating systemDatabase instance: separate location in memory reserved to run the databaseMay have several databases running in memory at the same timeDatabase Systems, 10th Edition*


Creating Tablespaces and DatafilesDatabase composed of one or more tablespacesTablespace is a logical storage spacePhysically stored in one or more datafilesDatafile physically stores the databases dataEach datafile can reside in a different directory on the hard diskDatabase has 1:M relationship with tablespacesTablespace has 1:M relationship with datafilesDatabase Systems, 10th Edition*


Managing the Database Objects: Tables, Views, Triggers, and ProceduresDatabase object: any object created by end usersSchema: logical section of the database that belongs to a given userSchema identified by a usernameWithin the schema, users create their own tables and other objectsNormally, users are authorized to access only the objects that belong to their own schemasDatabase Systems, 10th Edition*


Managing Users and Establishing SecurityUser: uniquely identifiable objectAllows a given person to log on to the databaseRole: a named collection of database access privilegesAuthorizes a user to connect to the database and use system resourcesProfile: named collection of settingsControls how much of a resource a given user can useDatabase Systems, 10th Edition*


Customizing the Database Initialization ParametersFine-tuning requires modification of database configuration parametersSome are changed in real time using SQLSome affect database instanceOthers affect entire RDBMS and all instances Initialization parameters reserve resources used by the database at run timeAfter modifying parameters, may need to restart the databaseDatabase Systems, 10th Edition*


SummaryData management is a critical activity for any organizationData should be treated as a corporate asset DBMS is the most commonly used electronic tool for corporate data managementDBMS has impact on organizations managerial, technological, and cultural frameworkData administration function evolved from centralized electronic data processing



Summary (contd.) Database administrator (DBA) is responsible for managing corporate databaseBroader data management activity is handled by data administrator (DA)DA is more managerially oriented than more technically oriented DBADA function is DBMS-independentDBA function is more DBMS-dependentWhen there is no DA, DBA executes all DA functionsDatabase Systems, 10th Edition*


Summary (contd.) Managerial services of DBA function:Supporting end-user communityDefining and enforcing policies, procedures, and standards for database functionEnsuring data security, privacy, and integrityProviding data backup and recovery servicesMonitoring distribution and use of data in databaseDatabase Systems, 10th Edition*


Summary (contd.) Technical role of DBA:Evaluating, selecting, and installing DBMSDesigning and implementing databases and applicationsTesting and evaluating databases and applicationsOperating DBMS, utilities, and applicationsTraining and supporting usersMaintaining DBMS, utilities, and applicationsDatabase Systems, 10th Edition*


Summary (contd.) Security: ensures confidentiality, integrity, availability of information system and dataSecurity policy: collection of standards, policies, and practicesSecurity vulnerability: weakness in system componentInformation engineering guides development of data administration strategyCASE tools and data dictionaries translate strategic plans to operational plansDatabase Systems, 10th Edition*


**************************************************

chap15.ppt

Documents

information systems

editiondatabase systems

database security

benefitsdatabase systems

multiple systems

organizationsdatabase

organizationdatabase

wealthdatabase systems