Schulung - IBM CLA93G - IBM Db2 12.1: Security and Concurrency for Relational DBAs

Course Outline

Unit 1: Locking and Concurrency Control

Unit 2: Security and Access Control Fundamentals

Unit 3: More about Db2 Security and Access Control

Objective

• Explain the purpose and mechanisms of Db2 serialization techniques, including locking, versioning, and latching
• Differentiate between Db2 isolation levels (UR, CS, RS, RR) and describe how they control data visibility and prevent concurrency anomalies
• Analyze the behavior of lock modes and scopes and predict their impact on concurrency and performance
• Monitor and troubleshoot lock-related issues in Db2, including lock escalation, timeouts, deadlocks, and lock waits, using built-in SQL queries, event monitors, and Db2 utilities like db2pd
• Distinguish between authentication and authorization in Db2
• Identify and explain the hierarchy of Db2 authorities and privileges, including instance-level, database-level, schema-level, and tenant-level controls
• Demonstrate how to grant, revoke, and audit privileges using system catalog views and SQL statements, and manage access through users, groups, and database roles
• Configure and administer security responsibilities using Db2 task authorities, including SECADM, DBADM, ACCESSCTRL, and DATAACCESS
• Describe the available encryption methods for securing Db2 database connections and explain how they protect data in transit
• Configure and manage Row and Column Access Control (RCAC) to enforce fine-grained data access policies within a Db2 database
• Explain the concept and benefits of Trusted Context in a three-tier architecture and how to define and use it for controlled user access
• Compare Label-Based Acess Control (LBAC) and RCAC and summarize how Db2 auditing features support monitoring and compliance requirements