Databricks Certified Data Engineer - Professional

Get started today

Ultimate access to all questions.

Explanation:

Correct Answer: C

Applying row-level security policies directly in the database, using user roles and session variables to control access, is the most effective method for ensuring users can only access their own data in a multi-tenant application. This approach offers several advantages:

Granular Access Control: Row-level security allows for precise control over which rows of data a user can access, based on criteria like their tenant ID.
Role-Based Permissions: Assigning roles to users within the database enables detailed permissions management, specifying what data they can view or modify.
Dynamic Security Policies: Session variables can dynamically apply security policies based on the current user's context, ensuring data relevance and privacy.
Scalability and Efficiency: Direct database implementation is more scalable and efficient than alternatives like separate databases or middleware filtering, simplifying access control management.

This method ensures consistent and secure data access across the application, tailored to each user's permissions and context.

Explanation:

Correct Answer: C

Granular Access Control: Row-level security allows for precise control over which rows of data a user can access, based on criteria like their tenant ID.
Role-Based Permissions: Assigning roles to users within the database enables detailed permissions management, specifying what data they can view or modify.
Dynamic Security Policies: Session variables can dynamically apply security policies based on the current user's context, ensuring data relevance and privacy.
Scalability and Efficiency: Direct database implementation is more scalable and efficient than alternatives like separate databases or middleware filtering, simplifying access control management.

This method ensures consistent and secure data access across the application, tailored to each user's permissions and context.

Comments (0)

No comments yet.

In a multi-tenant application where user data is stored in a shared database, what is the most effective method to ensure users can only access their own data through row-level security?

Real Exam

Utilize a middleware to filter data requests based on the authenticated user‘s tenant ID.

0.9%

Create a separate database for each tenant, applying database-level permissions.

2.8%

Apply row-level security policies directly in the database, using user roles and session variables to control access.

85.8%

Implement database views that filter records based on the tenant ID, tied to user session context.

10.4%