SlideShare a Scribd company logo

Security in oracle

S
ssuser40bb47

The document discusses security in Oracle databases. It covers several topics: Oracle Label Security which allows row-level access control based on user privileges; data masking and subsetting tools for replacing sensitive data; and auditing of database activities for accountability, investigation, and problem detection. Oracle provides various security components like encryption, redaction, key vaults, and firewalls to control access and monitor use of sensitive information in the database.

Education
1 of 23
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
Database security class presentation Providers: Zahra Taghipoor kolaei Seyyedeh Fatemeh Mousazadeh Mousavi Professor: Dr.Sadegh Dorri Nogoorani winter 2022 Security in oracle 1
Oracle database 1 2
About oracle ◉ Relational database ◉ ORDBMS ◉ SQL Based 3
Security 2 4
About Oracle Database security Oracle Label Security secures database tables at the row level, allowing you to filter user access to row data based on privileges. Real Application Security Administration Console (RASADM) lets you create Real Application Security data security policies using a graphical user interface. Enterprise User Security addresses user, administrative, and security challenges by relying on the identity management services supplied by Oracle Internet Directory, an LDAP-compliant directory service. 5 Transparent Data Encryption enables you to encrypt data so that only an authorized recipient can read it. Oracle Data Redaction enables you to redact (mask) column data using several redaction types. Data Masking and Subsetting process of replacing sensitive data with fictitious yet realistic looking data and process of downsizing either by discarding or extracting data
continue Key Vault enables you to accelerate security and encryption deployments by centrally managing encryption keys, Oracle wallets, Java keystores, and credential files. Oracle Audit Vault and Database Firewall provides a comprehensive Database Activity Monitoring (DAM) solution that combines database audit logs with SQL traffic capture. 6 Database Assessment Tools Identify database configuration, operation, or implementation introduces risk. Database Vault restrict access to application data by privileged database users. Reducing the risk of insider and outside threats.
Oracle Lable Security 3 7
About Oracle Label Security ◉ controls the display of individual table rows using labels ◉ works by comparing the row label with a user's label authorizations to enable you to easily restrict sensitive information to only authorized users ◉ based on multi-level security (MLS) requirements ◉ installed by default, but not automatically enabled 8
Benefits of Oracle Label Security ◉ It enables row level data classification and provides out-of-the box access mediation based on the data classification and the user label authorization or security clearance. ◉ It enables you to assign label authorizations or security clearances to both database users and application users. ◉ It provides both APIs and a graphical user interface for defining and storing data classification labels and user label authorizations. ◉ It integrates with Oracle Database Vault and Oracle Advanced Security Data Redaction, enabling security clearances to be use in both Database Vault command rules and Data Redaction policy definitions. 9
Components of Oracle Label Security ◉ Labels: authorizations for users and program units, govern access to specified protected objects • Levels: indicate the type of sensitivity that you want to assign to the row • Compartments: represent the projects in this example that help define more precise access controls • Groups: identify organizations owning or accessing the data ◉ Policy: name associated with these labels, rules, authorizations, and protected tables 10
Oracle Label Security Architecture 11
Data Masking and Subsetting 4 12
The Need to Mask and Subset data ◉ Limit sensitive data proliferation ◉ Share what is necessary ◉ Comply with data privacy laws and standards ◉ Minimize storage costs 13
Major Components of Oracle Data Masking and Subsetting ◉ Application Data Modeling ◉ Data Masking Format Library ◉ Data Masking Transformations ◉ Data Subsetting ◉ Application Templates 14
Architecture 15
Deployment Options ◉ In-Database mode ◉ In-Export mode ◉ Heterogeneous mode 16
Methodology 17
Auditting database activities 5 18
What is Auditing ◉ the monitoring and recording of selected user database actions, from both database users and nondatabase users ◉ The actions that you audit are recorded in either data dictionary tables or in operating system files 19
Why is Auditing Used ◉ Enable accountability for actions ◉ Investigate suspicious activity ◉ Notify an auditor of the actions of an unauthorized user ◉ Monitor and gather data about specific database activities ◉ Detect problems with an authorization or access control implementation 20
Auditing Unified and Conditional Auditing ➢ Audit data managed using the built- in audit data management package within the database ➢ The AUDIT_ADMIN and AUDIT_VIEWER roles provides separation of duty ➢ Oracle audit vault and database firewall is integrated with this Traditional Database Auditing ➢ Prevent overhead on the source database system ➢ Be written to the operating system files as this configuration 21
references 1) https://docs.oracle.com/en/database/oracle/oracle-database/21/ 2) https://docs.oracle.com/cd/E11882_01/network.112/e36292/intro.ht m#DBSEG001 22
Any questions ? You can find us at ◉ zahrataghipoor75@gmail.com ◉ sfmousazadeh99@gmail.com Thanks! 23

More Related Content

PPT
Auditing security of Oracle DB (Karel Miko)
DCIT, a.s.
 
PDF
Oracle Database 11g Security and Compliance Solutions - By Tom Kyte
Edgar Alejandro Villegas
 
PDF
Database security issues
n|u - The Open Security Community
 
PDF
8 isecurity database
Anil Pandey
 
PDF
Database security
keerthusandeepreddy
 
PPTX
Database Security
ShingalaKrupa
 
PPTX
Database security and security in networks
Prachi Gulihar
 
PPTX
Scalable and secure sharing of personal health records in cloud computing usi...
Naveena N
 
Auditing security of Oracle DB (Karel Miko)
DCIT, a.s.
 
Oracle Database 11g Security and Compliance Solutions - By Tom Kyte
Edgar Alejandro Villegas
 
Database security issues
n|u - The Open Security Community
 
8 isecurity database
Anil Pandey
 
Database security
keerthusandeepreddy
 
Database Security
ShingalaKrupa
 
Database security and security in networks
Prachi Gulihar
 
Scalable and secure sharing of personal health records in cloud computing usi...
Naveena N
 

What's hot (20)

PPTX
Security of the database
Pratik Tamgadge
 
PDF
Data sheet workshare data security, policy enforcement, and data center arc...
Hamish Brocklebank
 
PPTX
DBMS SECURITY
Wasim Raza
 
PPTX
Database security
Arpana shree
 
ODP
Decentralised entity registry “WikiReg”
Christophe Guéret
 
PPTX
HEBE Platform Technology
Alex G. Lee, Ph.D. Esq. CLP
 
PPTX
Scalable Data Management: Automation and the Modern Research Data Portal
Globus
 
PDF
Oracle database 12c 2 day + security guide
bupbechanhgmail
 
PDF
Database & Technology 1 _ Barbara Rabinowicz _ Database Security Methoda and ...
InSync2011
 
PPTX
Data base security & integrity
Pooja Dixit
 
DOC
Hasbe a hierarchical attribute based solution
IMPULSE_TECHNOLOGY
 
PDF
Brk30010 - With so many different ways to secure data across the Office 365 p...
Olav Tvedt
 
PDF
CIS14: Is the Cloud Ready for Enterprise Identity and Security Requirements?
CloudIDSummit
 
PPTX
Database Security And Authentication
Sudeb Das
 
PPT
Privacy preserving public auditing for regenerating-code-based
Nagamalleswararao Tadikonda
 
PPT
Dbms ii mca-ch12-security-2013
Prosanta Ghosh
 
PPTX
security and privacy in dbms and in sql database
gourav kottawar
 
PPT
Database Security & Encryption
Tech Sanhita
 
PPT
Case Study for Ego-centric Citation Network
Mike Taylor
 
DOCX
An Attribute-based Controlled Collaborative Access Control Scheme for Public ...
JAYAPRAKASH JPINFOTECH
 
Security of the database
Pratik Tamgadge
 
Data sheet workshare data security, policy enforcement, and data center arc...
Hamish Brocklebank
 
DBMS SECURITY
Wasim Raza
 
Database security
Arpana shree
 
Decentralised entity registry “WikiReg”
Christophe Guéret
 
HEBE Platform Technology
Alex G. Lee, Ph.D. Esq. CLP
 
Scalable Data Management: Automation and the Modern Research Data Portal
Globus
 
Oracle database 12c 2 day + security guide
bupbechanhgmail
 
Database & Technology 1 _ Barbara Rabinowicz _ Database Security Methoda and ...
InSync2011
 
Data base security & integrity
Pooja Dixit
 
Hasbe a hierarchical attribute based solution
IMPULSE_TECHNOLOGY
 
Brk30010 - With so many different ways to secure data across the Office 365 p...
Olav Tvedt
 
CIS14: Is the Cloud Ready for Enterprise Identity and Security Requirements?
CloudIDSummit
 
Database Security And Authentication
Sudeb Das
 
Privacy preserving public auditing for regenerating-code-based
Nagamalleswararao Tadikonda
 
Dbms ii mca-ch12-security-2013
Prosanta Ghosh
 
security and privacy in dbms and in sql database
gourav kottawar
 
Database Security & Encryption
Tech Sanhita
 
Case Study for Ego-centric Citation Network
Mike Taylor
 
An Attribute-based Controlled Collaborative Access Control Scheme for Public ...
JAYAPRAKASH JPINFOTECH
 
Ad

Similar to Security in oracle (20)

PDF
Oracle database 12c security and compliance
FITSFSd
 
PPTX
Introduction to Oracle Database Security.pptx
mhmad240
 
PDF
Oracle-Security_Executive-Presentation
stefanjung
 
PDF
ppt-security-dbsat-222-overview-nodemo.pdf
camyla81
 
PPTX
Creating a Multi-Layered Secured Postgres Database
EDB
 
PDF
Wp security-data-safe
ALI ANWAR, OCP®
 
PPTX
Oracle Database Security
Troy Kitch
 
DOCX
Database Security – Issues and Best PracticesOutline
OllieShoresna
 
PDF
8.1.6 newsecurity features
Anil Pandey
 
PDF
The Benefits of Having a Data Privacy Vault Tech domain news.pdf
Domain News Tech
 
PDF
111906665 ensuring-distributed-accountability-for-data-sharing-in-the-cloud
Nag Nani
 
PDF
A robust and verifiable threshold multi authority access control system in pu...
IJARIIT
 
PPTX
Database Options
Connor McDonald
 
DOCX
How to protect your sensitive data using oracle database vault / Creating and...
Anar Godjaev
 
PDF
5. 2010 11-03 bucharest oracle-tech_day_security
Doina Draganescu
 
PPTX
MobileDBSecurity.pptx
missionsk81
 
PPTX
ch20 Secuity & Admin Transparencies-6E.pptx
alhashediyemen1
 
PPTX
Security Inside Out: Latest Innovations in Oracle Database 12c
Troy Kitch
 
PDF
Oracle Key Vault Data Subsetting and Masking
DLT Solutions
 
PPTX
PCI Compliance: How to Remain Compliant and Gain Near Real-Time Analytics on ...
Emtec Inc.
 
Oracle database 12c security and compliance
FITSFSd
 
Introduction to Oracle Database Security.pptx
mhmad240
 
Oracle-Security_Executive-Presentation
stefanjung
 
ppt-security-dbsat-222-overview-nodemo.pdf
camyla81
 
Creating a Multi-Layered Secured Postgres Database
EDB
 
Wp security-data-safe
ALI ANWAR, OCP®
 
Oracle Database Security
Troy Kitch
 
Database Security – Issues and Best PracticesOutline
OllieShoresna
 
8.1.6 newsecurity features
Anil Pandey
 
The Benefits of Having a Data Privacy Vault Tech domain news.pdf
Domain News Tech
 
111906665 ensuring-distributed-accountability-for-data-sharing-in-the-cloud
Nag Nani
 
A robust and verifiable threshold multi authority access control system in pu...
IJARIIT
 
Database Options
Connor McDonald
 
How to protect your sensitive data using oracle database vault / Creating and...
Anar Godjaev
 
5. 2010 11-03 bucharest oracle-tech_day_security
Doina Draganescu
 
MobileDBSecurity.pptx
missionsk81
 
ch20 Secuity & Admin Transparencies-6E.pptx
alhashediyemen1
 
Security Inside Out: Latest Innovations in Oracle Database 12c
Troy Kitch
 
Oracle Key Vault Data Subsetting and Masking
DLT Solutions
 
PCI Compliance: How to Remain Compliant and Gain Near Real-Time Analytics on ...
Emtec Inc.
 
Ad

Recently uploaded (20)

PPTX
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
PDF
Black Hat USA 2025 - Micro ICS Summit - ICS/OT Threat Landscape
Chris Sistrunk
 
PPTX
1st Inaugural Professorial Lecture held on 19th February 2020 (Governance and...
kawisojames10
 
PDF
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
PDF
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
PDF
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
PDF
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
PDF
Computing-Curriculum for Schools in Ghana
abigailanane203
 
PPTX
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
PPTX
IMMUNITY IMMUNITY refers to protection against infection, and the immune syst...
shilpa939953
 
PDF
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
PPTX
BOWEL ELIMINATION FACTORS AFFECTING AND TYPES
PreetiSawant10
 
PDF
Classroom Observation Tools for Teachers
Nicaramirez
 
PDF
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
PPTX
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
PPTX
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
PPTX
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
PDF
RMMM.pdf make it easy to upload and study
sajedul2
 
PDF
STATICS OF THE RIGID BODIES Hibbelers.pdf
pascualasturiaskaye4
 
PDF
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
Black Hat USA 2025 - Micro ICS Summit - ICS/OT Threat Landscape
Chris Sistrunk
 
1st Inaugural Professorial Lecture held on 19th February 2020 (Governance and...
kawisojames10
 
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
Module 4: Burden of Disease Tutorial Slides S2 2025
Jonathan Hallett
 
Computing-Curriculum for Schools in Ghana
abigailanane203
 
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
IMMUNITY IMMUNITY refers to protection against infection, and the immune syst...
shilpa939953
 
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
BOWEL ELIMINATION FACTORS AFFECTING AND TYPES
PreetiSawant10
 
Classroom Observation Tools for Teachers
Nicaramirez
 
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
RMMM.pdf make it easy to upload and study
sajedul2
 
STATICS OF THE RIGID BODIES Hibbelers.pdf
pascualasturiaskaye4
 
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 

Security in oracle

  • 1. Database security class presentation Providers: Zahra Taghipoor kolaei Seyyedeh Fatemeh Mousazadeh Mousavi Professor: Dr.Sadegh Dorri Nogoorani winter 2022 Security in oracle 1
  • 3. About oracle ◉ Relational database ◉ ORDBMS ◉ SQL Based 3
  • 5. About Oracle Database security Oracle Label Security secures database tables at the row level, allowing you to filter user access to row data based on privileges. Real Application Security Administration Console (RASADM) lets you create Real Application Security data security policies using a graphical user interface. Enterprise User Security addresses user, administrative, and security challenges by relying on the identity management services supplied by Oracle Internet Directory, an LDAP-compliant directory service. 5 Transparent Data Encryption enables you to encrypt data so that only an authorized recipient can read it. Oracle Data Redaction enables you to redact (mask) column data using several redaction types. Data Masking and Subsetting process of replacing sensitive data with fictitious yet realistic looking data and process of downsizing either by discarding or extracting data
  • 6. continue Key Vault enables you to accelerate security and encryption deployments by centrally managing encryption keys, Oracle wallets, Java keystores, and credential files. Oracle Audit Vault and Database Firewall provides a comprehensive Database Activity Monitoring (DAM) solution that combines database audit logs with SQL traffic capture. 6 Database Assessment Tools Identify database configuration, operation, or implementation introduces risk. Database Vault restrict access to application data by privileged database users. Reducing the risk of insider and outside threats.
  • 8. About Oracle Label Security ◉ controls the display of individual table rows using labels ◉ works by comparing the row label with a user's label authorizations to enable you to easily restrict sensitive information to only authorized users ◉ based on multi-level security (MLS) requirements ◉ installed by default, but not automatically enabled 8
  • 9. Benefits of Oracle Label Security ◉ It enables row level data classification and provides out-of-the box access mediation based on the data classification and the user label authorization or security clearance. ◉ It enables you to assign label authorizations or security clearances to both database users and application users. ◉ It provides both APIs and a graphical user interface for defining and storing data classification labels and user label authorizations. ◉ It integrates with Oracle Database Vault and Oracle Advanced Security Data Redaction, enabling security clearances to be use in both Database Vault command rules and Data Redaction policy definitions. 9
  • 10. Components of Oracle Label Security ◉ Labels: authorizations for users and program units, govern access to specified protected objects • Levels: indicate the type of sensitivity that you want to assign to the row • Compartments: represent the projects in this example that help define more precise access controls • Groups: identify organizations owning or accessing the data ◉ Policy: name associated with these labels, rules, authorizations, and protected tables 10
  • 11. Oracle Label Security Architecture 11
  • 12. Data Masking and Subsetting 4 12
  • 13. The Need to Mask and Subset data ◉ Limit sensitive data proliferation ◉ Share what is necessary ◉ Comply with data privacy laws and standards ◉ Minimize storage costs 13
  • 14. Major Components of Oracle Data Masking and Subsetting ◉ Application Data Modeling ◉ Data Masking Format Library ◉ Data Masking Transformations ◉ Data Subsetting ◉ Application Templates 14
  • 16. Deployment Options ◉ In-Database mode ◉ In-Export mode ◉ Heterogeneous mode 16
  • 19. What is Auditing ◉ the monitoring and recording of selected user database actions, from both database users and nondatabase users ◉ The actions that you audit are recorded in either data dictionary tables or in operating system files 19
  • 20. Why is Auditing Used ◉ Enable accountability for actions ◉ Investigate suspicious activity ◉ Notify an auditor of the actions of an unauthorized user ◉ Monitor and gather data about specific database activities ◉ Detect problems with an authorization or access control implementation 20
  • 21. Auditing Unified and Conditional Auditing ➢ Audit data managed using the built- in audit data management package within the database ➢ The AUDIT_ADMIN and AUDIT_VIEWER roles provides separation of duty ➢ Oracle audit vault and database firewall is integrated with this Traditional Database Auditing ➢ Prevent overhead on the source database system ➢ Be written to the operating system files as this configuration 21
  • 23. Any questions ? You can find us at ◉ zahrataghipoor75@gmail.com ◉ sfmousazadeh99@gmail.com Thanks! 23