Oracle Data Safe
Oracle Data Safe helps organizations to accelerate Cloud adoption and achieve data privacy and compliance by discovering, classifying, and masking sensitive data. It also helps organizations establish IT internal controls for their database infrastructure in and outside the Oracle cloud. Audit information is consolidated from multiple sources and alerts and reports are generated to meet security and regulatory requirements. Data Masking simplifies the process of masking sensitive data in your non-production databases so that the data can be safely shared with developers, testers, partners, and other third parties.
Watch an introductory video about Oracle Data Safe, or read the text version.
Target Database Information Stored in Oracle Data Safe
As an Oracle Data Safe service consumer, you control what data is retrieved and stored by Oracle Data Safe. Typical types of data are:
- Audit data and metadata about database users, including username, privileges and role assignments - If configured to do so, Oracle Data Safe collects audit data and user metadata from the target databases for analysis, alerting, and reporting.
- Metadata about audit policies - If configured to do so, Oracle Data Safe collects information about unified audit policies within the database, including the policy name, policy condition, and policy state (enabled or disabled).
- Metadata about the database's security configuration, including users and their privileges - If configured to do so, Oracle Data Safe collects configuration information from the database to identify areas where the configuration does not match common practices, may introduce additional risk, or where security features are not enabled.
- Metadata about database users, including username, privileges and role assignments, and account status - If configured to do so, Oracle Data Safe collects information about users to assess user risk.
- Metadata about data stored within the database - If configured to do so, Oracle Data Safe scans the target database for sensitive data and retrieves the schema, table, and column names, as well as the number of rows of data involved. The database schema names, table names, and column names are collected within Oracle Data Safe and associated with the appropriate sensitive data type.
- Metadata about database structures - If configured to do so, Oracle Data Safe masks sensitive data within the database. As part of that operation, Oracle Data Safe collects information about table structures, including primary and foreign key relationships, column names and data types, and the names and types of indexes.
- Data - If configured to do so, Oracle Data Safe will retrieve one (1) sample value for each discovered item of sensitive data to assist the Oracle Data Safe user in validating the discovery results. This option is turned off by default. The data can only be reviewed during the discovery phase and is not accessible later.
- Metadata about the database - To provide supported features, Oracle Data Safe collects metadata about the database, including database edition and version.
- Database connection details including database credentials - When a database is registered in Oracle Data Safe, Oracle Data Safe collects database connection details and the Oracle Data Safe database account credentials, as provided through user inputs, to be able to access the database and provide the Oracle Data Safe features.