Driving Security Revenue With Oracle Database 11g

Agenda

• Security Challenges
• The Market Opportunity With Governance, Risk, Compliance
• Three Brightest Lights
  • Database Vault
  • Advanced Security Options
  • Audit Vault
• Products Overview
• Success Stories
• Getting Started
• Questions

Where is the Light Brightest?

• Database Vault
  • Recent and Planned Database Consolidations
  • Personally Identifiable Information (PII)
  • Advanced Security Option clients
  • Peoplesoft Clients (validated DBV Application)
  • eBS/Siebel clients
• Advanced Security Option
  • Payment Card Industry (PCI) Data
  • Personally Identifiable Information (PII)
  • Database Vault Clients
• Audit Vault
  • Broad Oracle Footprint with Multiple Silo’d domains
  • Compliance aware (e.g. Fin Serv, Retail, & Healthcare)

Oracle Database Vault Compliance and Insider Threats

• Controls on privileged users
  • Restrict DBA from application data
  • Provide Separation of Duty
  • Security for database and information consolidation
• Enforce data access security policies
  • Control who, when, where and how is data accessed
  • Make decision based on IP address, time, auth…
• Available on Oracle Database 10g Release 2 and Oracle Database 9.2.0.8
• Validated with PeopleSoft
• Validation for E-Business, Siebel, and others in progress

Oracle Advanced SecurityOracle Database 11g Enhancements

• Tablespace Encryption
  • Define a new tablespace as ‘encrypted’
    • No need to specify columns
  • Even more transparent than existing column TDE
    • Supports range scans
    • Supports foreign keys
  • Existing content can be moved into encrypted tablespaces
• SECUREFILE LOB encryption
• Hardware Security Module Integration
  • Generate, store and manage master key in an external hardware device
  • Standard PKCS #11 API allows customers to choose from HSM vendors

Transparent Data Encryption Easy Uptake

• No changes to existing applications
  • No triggers, no views
  • Minimal performance impact
  • Built-in key management
• No crash-course needed in encryption or key management; just focus on business logic
• Simple alter table statement
  • Include changes in a script

Oracle Audit Vault

• Key Drivers
  • Regulatory Compliance (SOX, PCI, Privacy, …)
    • Risk assessment and compensating controls
    • Demonstrate controls for compliance
  • Security
    • Detect misuse of privileges
• Key Requirements
  • Collect Audit trail data from many audit silos
  • Automate review of the audit trail logs, and raise alerts
  • Centralize audit policy management
  • Secure the audit trail
  • Minimize performance impact on production systems

© 2010, www.oracledatabase12g.com. 版权所有.文章允许转载,但必须以链接方式注明源地址,否则追究法律责任.

相关文章 | Related posts:

1. Tell Me About Oracle Database Security Products
2. Protecting Applications Using Oracle 11g Database Vault
3. Oracle Database 11g: Security Student Guide
4. Know about Oracle Network Security
5. Oracle Identity Management Suite 11g Overview
6. Oracle BI Enterprise Edition 11g Installation,Upgrade,Security
7. Advanced Compression in Oracle Database 11g
8. Oracle database 11g r2最新安装体验
9. Oracle Database 11g: XML Development Student Guide
10. Oracle Database 11g: Change Management Overview eStudy