Google Professional Cloud Developer Exam - Topic 14 Question 28 Discussion

Actual exam question for Google's Professional Cloud Developer exam

Question #: 28
Topic #: 14

[All Professional Cloud Developer Questions]

Your company has a BigQuery dataset named "Master" that keeps information about employee travel and expenses. This information is organized by employee department. That means employees should only be able to view information for their department. You want to apply a security framework to enforce this requirement with the minimum number of steps.

What should you do?

ACreate a separate dataset for each department. Create a view with an appropriate WHERE clause to
select records from a particular dataset for the specific department. Authorize this view to access records from your Master dataset. Give employees the permission to this department-specific dataset.

BCreate a separate dataset for each department. Create a data pipeline for each department to copy
appropriate information from the Master dataset to the specific dataset for the department. Give employees the permission to this department-specific dataset.

CCreate a dataset named Master dataset. Create a separate view for each department in the Master
dataset. Give employees access to the specific view for their department.

DCreate a dataset named Master dataset. Create a separate table for each department in the Master
dataset. Give employees access to the specific table for their department.

Show Suggested Answer

Suggested Answer: B

by Joesph at May 07, 2022, 01:27 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Developer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Karan

4 months ago

Really? Is it safe to give access to views like that?

upvoted 0 times

...

Marleen

4 months ago

I think D could lead to a lot of tables to manage.

upvoted 0 times

...

Herminia

4 months ago

Wait, why not just use views for everything?

upvoted 0 times

...

Merilyn

4 months ago

I disagree, A is more secure with separate datasets.

upvoted 0 times

...

Ronny

5 months ago

Option C seems the simplest to manage.

upvoted 0 times

...

Lavera

5 months ago

I'm leaning towards option C too, but I remember there was a debate about whether views or separate datasets were better for security. I hope I pick the right one!

upvoted 0 times

...

Allene

5 months ago

I feel like using views is a simpler approach, but I wonder if option D could also work if we just created tables instead. It might be more straightforward?

upvoted 0 times

...

Pete

5 months ago

I think creating separate datasets for each department, like in option A or B, might complicate things. We practiced something similar, but I can't recall the exact pros and cons.

upvoted 0 times

...

Jesusa

5 months ago

I remember we discussed using views to restrict access based on departments, so option C seems like a good choice. But I'm not entirely sure if it's the most efficient method.

upvoted 0 times

...

Larue

5 months ago

SQL injection, for sure. The example URL provided clearly shows the application is not properly sanitizing the user input, allowing an attacker to execute arbitrary SQL queries. This is a textbook SQL injection attack.

upvoted 0 times

...

Rosalyn

5 months ago

I'm pretty confident that option D is the right answer here. Setting the Order By picklist field to the value of SBQQ_Group_c and then clicking the Create Order button should meet the requirement to split orders by delivery location.

upvoted 0 times

...

Rebbeca

5 months ago

Okay, let's see. The key here is that even with the Trusted Subsystem pattern, the service is still accessing the database, so the credentials used could be compromised. I think option C is the best answer.

upvoted 0 times

...

Christene

5 months ago

The concurrent login issue is the key challenge here. I'll need to consider how each solution addresses that constraint.

upvoted 0 times

...