Scribd
Upload
45 views2 pages

Database Management Exam Questions

This document outlines a model examination for a Database Management System and Security course at Sriram Engineering College. It includes a variety of questions across three parts, covering topics such as entity-relationship models, normalization, transaction management, SQL injection, and database security. The exam is designed to assess students' understanding of key concepts and their application in real-world scenarios.

Uploaded by

Santhosh
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
45 views2 pages

Database Management Exam Questions

This document outlines a model examination for a Database Management System and Security course at Sriram Engineering College. It includes a variety of questions across three parts, covering topics such as entity-relationship models, normalization, transaction management, SQL injection, and database security. The exam is designed to assess students' understanding of key concepts and their application in real-world scenarios.

Uploaded by

Santhosh
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

Reg .

No
[Link]
SRIRAM ENGINEERING COLLEGE-PERUMALPATTU
SCHOOL OF COMPUTER SCIENCE AND ENGINEERING/CYS
CB3401/DATABASE MANAGEMENT SYSTEM AND SECURITY
II Year/IV Semester
(Cyber Security)
MODEL EXAMINATION

DURATION: 9.00 a.m. TO [Link]. [Link]: 100


PART-A (10*2=20 Marks)

ANSWER ALLTHE QUESTIONS

1. Explain the concept of entity-relationship (ER) models.


2. What is data fragmentation in distributed databases?
3. How does non-loss decomposition help in database normalization?
4. What is dependency preservation in normalization?
5. What is the significance of serializability in transaction management?
6. Explain the concept of deadlock in databases.
7. What is the primary goal of database security?
8. How can organizations prevent SQL injection attacks?
9. Why is database encryption necessary for security?
10. Explain how inference can pose a threat to database security.

PART - B (5 *13=65 Marks)

11. (a) What do you understand by a Data Model? Identify its different types and illustrate with
an example. (CO1)

(OR)

(b) Explain the key types of Relational Algebra operations and their significance in database
queries. (CO1)

12. (a) i) Construct an ER diagram for a car insurance company, where customers own multiple
cars and each car may have several recorded accidents.
(CO2)

(OR)

(b) Discuss the importance of Normalization in databases. Explain 1NF, 2NF, and 3NF with
relevant examples. (CO2)
13. (a) How do Two-Phase Locking protocols help maintain concurrency control in databases?
Explain in detail. (CO3)

(OR)

(b) Define a transaction in database management. Illustrate the transaction states and describe its
key properties. (CO3)

14.(a) What is the injection technique in databases? Explain SQL injection with a simple
example. (CO4)

(OR)

(b). Explain why database security is essential. Discuss common threats and how they can affect
data integrity. (CO4)

15.(a) Explain the importance of database access control. How does it help secure sensitive
information? (CO5)

(OR)

(b) Discuss challenges faced when implementing database encryption. How do organizations
balance security and performance? (CO5)

PART -C (l*15= 15)

16. (a) "How can businesses use ER diagrams, functional dependencies, and normalization (from
1NF to 5NF) to design a well-structured database that minimizes data redundancy and
inconsistencies?" (CO2)

(OR)

(b) Consider the following relational schemes for a library database:

Book (Title, Author, Catalog no, Publisher, Year, Price)

Collection (Title, Author, Catalog no)

The following are functional dependencies

i. Title Author-> Catalog no

ii. Catalog no->Title Author Publisher Year

iii. Assume {Author Title} is the key for both schemes. Apply the appropriate normal form

for Book and Cancellation?

Common questions

Powered by AI

Entity-Relationship (ER) models are crucial for database design as they provide a conceptual framework that maps out the relationships between different data entities. They help in visualizing and structuring data in a coherent manner by representing entities, attributes, and relationships, which facilitates understanding the data requirements and ensuring all necessary information is captured. ER models are important in minimizing redundancy and maintaining data integrity by providing a clear schema design that can be translated into a logical model .

Deadlocks occur in databases when two or more transactions wait indefinitely for one another to release locks on resources, causing a standstill. To mitigate deadlocks, strategies such as deadlock prevention, detection, and resolution are employed. Prevention involves ensuring a schedule of resource allocation that avoids deadlock situations, such as by using timestamp ordering. Detection involves monitoring for cycles in the wait-for graph, and resolution typically involves aborting one or more transactions to break the cycle .

Businesses can utilize Entity-Relationship (ER) diagrams to visually map out the relationships between entities, ensuring all necessary data and interactions are captured initially. Functional dependencies help identify the required attributes and their relationships, guiding effective decomposition of tables without redundancy. Normalization, from 1NF to 5NF, systematically organizes attributes and relations to reduce redundancy and inconsistency. Each normal form builds on the previous, progressively minimizing duplication and dependency until achieving a structure optimized for consistency and efficiency .

Serializability in transaction management is important as it ensures the isolation property of transactions, leading to consistency in the database. Serializability guarantees that the execution of transactions results in the database being in the same state as if the transactions were executed serially, one after the other. This prevents anomalies from concurrent transactions, like lost updates or uncommitted data, thus preserving data consistency .

The primary goals of database security are to ensure data confidentiality, integrity, and availability. These goals impact data protection by preventing unauthorized access and modifications, ensuring that the data remains accurate and unaltered during operations, and guaranteeing that data is available to authorized users when needed. This comprehensive approach is necessary to protect sensitive information from breaches and ensure reliable data security practices .

Inference in databases poses the threat of unauthorized users deducing sensitive information from accessible data, even if the specific data elements are secured. To mitigate these risks, organizations can employ measures such as data masking, query rewriting, and noise introduction to obscure the real data patterns. Design strategies also include sensitivity classification of data and implementing access control policies that limit query outputs based on user privileges .

To prevent SQL injection attacks, organizations should adopt a combination of technological and procedural countermeasures. Technological measures include using parameterized queries, stored procedures, and implementing robust input validation and escaping mechanisms to sanitize user inputs. Procedurally, organizations should conduct regular security audits, ensure software updates, and provide ongoing training to developers on secure coding practices. These strategies together fortify the database against SQL injections .

Database encryption is vital for security as it transforms data into unreadable formats, accessible only with a decryption key. This ensures that even if unauthorized access occurs, the data remains protected. Challenges in implementation include managing encryption keys securely, potential performance impacts due to encryption and decryption processes, and ensuring compliance with legal standards. Balancing these challenges while maintaining data security and system efficiency is a critical organizational task .

Non-loss decomposition ensures that a database schema is sufficiently normalized without losing any data. It is critical as it maintains data integrity and consistency by ensuring that original data can be reconstructed from the decomposed schema. This is accomplished through ensuring that the decomposition is dependency-preserving and covers all functional dependencies of the original schema, allowing seamless reassembly of the data if needed .

Data fragmentation benefits distributed database systems by enhancing performance, improving availability, and ensuring data locality. It breaks down a database into smaller, more manageable pieces, which can be distributed across different locations. This allows parallel query processing and reduces data transfer costs. The types of fragmentation include horizontal fragmentation, where rows of a table are divided; vertical fragmentation, where columns of a table are divided; and hybrid fragmentation, which combines both horizontal and vertical methods .

You might also like