3.3 Oracle Database Security Suggestions

This topic describes provides suggestions about Oracle Database Security.

Access Control

Database Vault (DV) provides enterprises with protection from the insider threats and in advantage leakage of sensitive application data. Access to application data by users and administrators is controlled using DV realms, command rules, and multi factor authorization. DV also addresses the Access privilege by separating responsibilities.

Data Protection

Advance Security provides the most advanced encryption capabilities to protect sensitive information without requiring any change to the application. TDE is native database solution that is completely transparent to existing applications.

It also provides strong protection for data in transit by using network encryption capabilities. Features like Easy to deploy, Ensure secure by default to accept communication from the client using encryption, Network encryption using SSL/TLS.

Monitoring and Compliance

Audit Vault (AV) transparently collects and consolidates the audit data from multiple databases across the enterprise. It provides valuable insight into all details including privileged users. The integrity of the audit data is ensured using controls including DV and Advance Security. Access to AV data is strictly controlled. It also provides graphical summaries of the activity causing alerts. The database audit settings are centrally managed and monitored.