SOL-C01 · Question #50
SOL-C01 Question #50: Real Exam Question with Answer & Explanation
The correct answer is D: Create a row access policy on the 'CUSTOMER DATA' table that filters rows based on the current. Row access policies provide the most secure and manageable way to implement row-level security in Snowflake. They are tightly integrated with the database and enforce access control at the data level, reducing the risk of data leakage and simplifying administration. Options A, B,
Question
A data engineer is tasked with ensuring that only authorized personnel can access sensitive data within a Snowflake database named 'SALES DB'. They need to implement a row-level security policy that filters rows based on the current user's role. A table named 'CUSTOMER DATA exists with a column named 'REGION'. Which of the following steps is the MOST effective and secure way to achieve this, considering minimal administrative overhead and leveraging Snowflake's built-in features?
Options
- ACreate a view that joins `CUSTOMER DATA' with `INFORMATION SCHEMA.APPLICABLE
- BCreate a stored procedure that dynamically generates SQL queries based on the current user's
- CCreate a masking policy on the 'REGION' column that replaces values with NULL based on the
- DCreate a row access policy on the 'CUSTOMER DATA' table that filters rows based on the current
- EImplement a custom application logic layer that retrieves all data from 'CUSTOMER_DATA' and
Explanation
Row access policies provide the most secure and manageable way to implement row-level security in Snowflake. They are tightly integrated with the database and enforce access control at the data level, reducing the risk of data leakage and simplifying administration. Options A, B, C and E are either less efficient, less secure, or more complex to manage.
Topics
Community Discussion
No community discussion yet for this question.