Oracle Database: Program with PL/SQL — Question 41

You are designing and developing a complex database application and implementing fine-grained access control using security policies.
Which statement is true with respect to attaching security policies to database objects?

Answer options

• A. You can use different security policies for SELECT, INSERT, UPDATE, INDEX and DELETE statements.
• B. You can use only one security policy per database object.
• C. You implement security policies through database procedures.
• D. Column-masking policies can be applied to SELECT, INSERT, UPDATE and DELETE statements.

Correct answer: D

Explanation

The correct answer is D because column-masking policies are designed to restrict the visibility of data during SELECT, INSERT, UPDATE, and DELETE operations. Answer A is incorrect as it misrepresents the ability to apply multiple policies for different operations on the same object. Answer B is incorrect because multiple security policies can exist in a database, but they may be applied at different levels. Answer C is misleading since security policies can be implemented at the database level, not solely through procedures.