More Related Content
![[❤PDF❤] Oracle 19c Database Administration Oracle Simplified](https://cdn.slidesharecdn.com/ss_thumbnails/0137142838-210409040449-thumbnail.jpg?width=560&fit=bounds)
Similar to Oracle Database Security (20)
Oracle Database Security
- 2. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.2 Billions of Database Records Breached Globally 97% of Breaches Were Avoidable with Basic Controls 98% records stolen from databases 84% records breached using stolen credentials 92% discovered by third party
- 3. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.3 Oracle Database Security Solutions Defense-in-Depth for Maximum Security Activity Monitoring Database Firewall Auditing and Reporting DETECTIVE Redaction and Masking Privileged User Controls Encryption PREVENTIVE ADMINISTRATIVE Sensitive Data Discovery Configuration Management Privilege Analysis
- 4. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.4 Transparent data encryption Prevents access to stored data Built-in two-tier key management Support for HSM/KMS Integration with critical Oracle Database technologies Oracle Advanced Security Encryption is the Foundation Preventive Control for Oracle Databases Disk Backups Exports Off-Site Facilities Applications
- 5. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.5 Replace sensitive app data Referential integrity preserved Extensible template library Automated masking policies Support for non-Oracle databases Oracle Data Masking Masking Data for Non-Production Use Preventive Control for Oracle Databases LAST_NAME SSN SALARY ANSKEKSL 323—23-1111 60,000 BKJHHEIEDK 252-34-1345 40,000 LAST_NAME SSN SALARY AGUILAR 203-33-3234 40,000 BENSON 323-22-2943 60,000 Production Non-Production Dev Test Production
- 6. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.6 Limit DBA access to app data Multi-factor authorization Enforce enterprise data governance, least privilege Realms create protective zones Out-of-the-box application policies Database Vault Privileged User Controls Preventive Control for Oracle Databases Procurement HR Finance select * from finance.customers Application DBA Applications Security DBA DBA
- 7. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.7 Oracle Label Security Label Based Access Control Preventive Control for Oracle Databases Transactions Report Data Reports Confidential Sensitive Sensitive Confidential Public Virtual information partitioning Apply labels to users and data Flexible classification labels Automatically enforced row level access control Transparent to applications
- 8. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.8 Monitor database traffic Detect, block unauthorized activity including SQL injection attacks Unique SQL grammar analysis Whitelists, blacklists enforce activity Scalable software appliance Oracle Audit Vault and Database Firewall Database Activity Monitoring and Firewall Detective Control for Oracle and non-Oracle Databases Block Log Allow Alert SubstituteApps Whitelist Blacklist SQL Analysis Policy Factors Users
- 9. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.9 Audit, Report, and Alert in Real-Time Detective Control for Oracle and non-Oracle Databases Policies Built-in Reports Alerts Custom Reports ! Security Analyst OS & Storage Directories Databases Oracle Database Firewall Custom Audit Data & Event Logs SOC DBA Secure centralized repository Detect, alert suspicious activities Out-of-the box custom and compliance reporting Streamline database audits Built-in separation of duties Oracle Audit Vault and Database Firewall Auditor
- 10. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.10 Scan Oracle for sensitive data Built-in, extensible definitions Create and maintain application data models Protect data appropriately: encrypt, redact, mask, audit… Oracle Enterprise Manager Discover Sensitive Data and Databases Administrative Control for Oracle Databases
- 11. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.11 Discover and classify databases Scan for best practices, standards Detect unauthorized changes Automated remediation Patching and provisioning Oracle Database Lifecycle Management Configuration Management Administrative Control for Oracle Databases Discover Scan & Monitor Patch
- 12. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.12 Enterprise ready Security and compliance Simple and flexible Speed and scale oracle.com/goto/database/security-customers Oracle Database Security Customers Customer Benefits Customers Worldwide Rely on Oracle
- 13. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.13 For More Information www.oracle.com/database/security