Lecture 4

Question 1

Database auditing vs monitoring: (!!)

Answer 1

• Auditing: documenting and recording all database activity in detail, like logins or modifications.
• Monitoring: real-time observation of database activity and performance, to detect anomalies as they happen.

Both are used to ensure security and compliance.

Question 2

Name 3 types of activity monitored in auditing: (!!)

Answer 2

-Logins
-Modifications
-Transactions

Question 3

What are 4 key metrics to look at in performance monitoring? (!!)

Answer 3

-Query execution time.
-CPU usage.
-Memory usage.
-disk input and output

Question 4

Name 3 benefits of performance monitoring: (!!)

Answer 4

-Performance optimization.
-Efficiency in resource usage.
-Identifying patterns to make predictions.

Question 5

What is machine learning and how does it help prevent attacks? (!!)

Answer 5

Machine learning is a form of ai that learns and improves from data over time.
It has an enhanced ability to detect patterns that traditional rule-based systems might miss.

Question 6

What are 3 benefits of machine learning in auditing? (!!)

Answer 6

-Automated learning.
-Less false positives.
-Real-time threat detection.

Question 7

What is blockchain technology and how is it used in auditing? (!!)

Answer 7

A system that records data in a chain of permanent, unchangeable blocks, called ledgers.
It helps in recording database activity securely, as blocks are immutable.

Question 8

What are 3 benefits of using blockchain in auditing? (!!)

Answer 8

-Transparency: Every transaction recorded is visible to authorized parties.

-Decentralization: no central authority that attackers can attack.

-Enhanced cryptographic security.

Question 9

What is a possible future application of blockchain in auditing?

Answer 9

Integration of blockchain with machine learning, where a secure ledger of data is created using blockchain then be analyzed by machine learning.

Question 10

What is predictive analytics?

Answer 10

a technique that uses data to identify patterns and prevent problems like bottlenecks.

Question 11

What’s automated remediation? (!!)

Answer 11

It detects and automatically resolves issues in real-time.

Question 12

List 3 examples of actions that automated remediation can do: (!!)

Answer 12

-Resource management: automatically allocates resources like memory to avoid exceeding limits.

-Automatic patches and updates.

-Load balancing: dynamically rerouting queries to less loaded servers.

Question 13

What are 3 benefits of automated remediation? (!!)

Answer 13

-Reducing downtime.
-Cost-effective: can do the work instead of employees.
-Scalability.

Question 14

What is privacy-preserving auditing and why is it important? (!!)

Answer 14

It’s the practice of auditing while keeping sensitive information private. It is important due to increasing privacy concerns and regulatory requirements.

Question 15

What are 2 benefits of privacy-preserving auditing? (!!)

Answer 15

-Maintaining confidentiality during audits.
-Compliance.

Question 16

What are 3 techniques used to ensure privacy during auditing? (!!)

Answer 16

-Homomorphic Encryption: operating on encrypted data without decrypting it. Slower and resource-extensive.

-Anonymization: removing or altering PIIs so that data cannot be linked to individuals.

-Pseudonymization: replaces sensitive information with pseudonyms that can be re-identified. It can be coupled with anonymization.