SlideShare a Scribd company logo

Oracle Database Security

Download as PPTX, PDF
T
Troy Kitch

The document discusses security issues with databases and Oracle's database security solutions. It notes that 97% of breaches were avoidable with basic controls, 98% of records were stolen from databases, and 84% of records were breached using stolen credentials. Oracle provides database security solutions like encryption, activity monitoring, auditing, and privileged user controls to help prevent breaches through a defense-in-depth approach.

TechnologyBusiness
Related topics:
Oracle Database Insights
1 of 13
Downloaded 484 times
1
2
Most read
3
4
Most read
5
6
7
Most read
8
9
10
11
12
13
Oracle Database Security
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.2 Billions of Database Records Breached Globally 97% of Breaches Were Avoidable with Basic Controls 98% records stolen from databases 84% records breached using stolen credentials 92% discovered by third party
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.3 Oracle Database Security Solutions Defense-in-Depth for Maximum Security Activity Monitoring Database Firewall Auditing and Reporting DETECTIVE Redaction and Masking Privileged User Controls Encryption PREVENTIVE ADMINISTRATIVE Sensitive Data Discovery Configuration Management Privilege Analysis
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.4  Transparent data encryption  Prevents access to stored data  Built-in two-tier key management  Support for HSM/KMS  Integration with critical Oracle Database technologies Oracle Advanced Security Encryption is the Foundation Preventive Control for Oracle Databases Disk Backups Exports Off-Site Facilities Applications
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.5  Replace sensitive app data  Referential integrity preserved  Extensible template library  Automated masking policies  Support for non-Oracle databases Oracle Data Masking Masking Data for Non-Production Use Preventive Control for Oracle Databases LAST_NAME SSN SALARY ANSKEKSL 323—23-1111 60,000 BKJHHEIEDK 252-34-1345 40,000 LAST_NAME SSN SALARY AGUILAR 203-33-3234 40,000 BENSON 323-22-2943 60,000 Production Non-Production Dev Test Production
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.6  Limit DBA access to app data  Multi-factor authorization  Enforce enterprise data governance, least privilege  Realms create protective zones  Out-of-the-box application policies Database Vault Privileged User Controls Preventive Control for Oracle Databases Procurement HR Finance select * from finance.customers Application DBA Applications Security DBA DBA
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.7 Oracle Label Security Label Based Access Control Preventive Control for Oracle Databases Transactions Report Data Reports Confidential Sensitive Sensitive Confidential Public  Virtual information partitioning  Apply labels to users and data  Flexible classification labels  Automatically enforced row level access control  Transparent to applications
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.8  Monitor database traffic  Detect, block unauthorized activity including SQL injection attacks  Unique SQL grammar analysis  Whitelists, blacklists enforce activity  Scalable software appliance Oracle Audit Vault and Database Firewall Database Activity Monitoring and Firewall Detective Control for Oracle and non-Oracle Databases Block Log Allow Alert SubstituteApps Whitelist Blacklist SQL Analysis Policy Factors Users
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.9 Audit, Report, and Alert in Real-Time Detective Control for Oracle and non-Oracle Databases Policies Built-in Reports Alerts Custom Reports ! Security Analyst OS & Storage Directories Databases Oracle Database Firewall Custom Audit Data & Event Logs SOC DBA  Secure centralized repository  Detect, alert suspicious activities  Out-of-the box custom and compliance reporting  Streamline database audits  Built-in separation of duties Oracle Audit Vault and Database Firewall Auditor
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.10  Scan Oracle for sensitive data  Built-in, extensible definitions  Create and maintain application data models  Protect data appropriately: encrypt, redact, mask, audit… Oracle Enterprise Manager Discover Sensitive Data and Databases Administrative Control for Oracle Databases
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.11  Discover and classify databases  Scan for best practices, standards  Detect unauthorized changes  Automated remediation  Patching and provisioning Oracle Database Lifecycle Management Configuration Management Administrative Control for Oracle Databases Discover Scan & Monitor Patch
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.12  Enterprise ready  Security and compliance  Simple and flexible  Speed and scale oracle.com/goto/database/security-customers Oracle Database Security Customers Customer Benefits Customers Worldwide Rely on Oracle
Copyright © 2013, Oracle and/or its affiliates. All rights reserved.13 For More Information www.oracle.com/database/security

More Related Content

PDF
rapportfinal
Hamza Ben Marzouk
 
PPTX
What is quantum computing
Mariyum Khan
 
PPTX
Drug interactions
velspharmd
 
PDF
Oracle RAC 19c and Later - Best Practices #OOWLON
Markus Michalewicz
 
PPTX
Recent changes in RNTCP Guidelines
Arvind Ghongane
 
PPTX
Chp2 - SOA
Lilia Sfaxi
 
PPT
Basics Of Networking (Overview)
ashiesh0007
 
DOCX
Functional Design Document - Payroll V.2.2.docx
Zeeshan Ikram
 
rapportfinal
Hamza Ben Marzouk
 
What is quantum computing
Mariyum Khan
 
Drug interactions
velspharmd
 
Oracle RAC 19c and Later - Best Practices #OOWLON
Markus Michalewicz
 
Recent changes in RNTCP Guidelines
Arvind Ghongane
 
Chp2 - SOA
Lilia Sfaxi
 
Basics Of Networking (Overview)
ashiesh0007
 
Functional Design Document - Payroll V.2.2.docx
Zeeshan Ikram
 

What's hot (20)

PDF
Oracle Security Presentation
Francisco Alvarez
 
PDF
AV/DF Advanced Security Option
DLT Solutions
 
PDF
Best Practices for implementing Database Security Comprehensive Database Secu...
Kal BO
 
PPTX
Introducing Oracle Audit Vault and Database Firewall
Troy Kitch
 
PPT
Active Directory Services
Varun Arora
 
PDF
Presentation database security audit vault & database firewall
xKinAnx
 
PDF
Backup and recovery in oracle
sadegh salehi
 
PPT
Database Security
alraee
 
PPTX
Backup & recovery with rman
itsabidhussain
 
PPT
Backups And Recovery
asifmalik110
 
PPTX
Security of the database
Pratik Tamgadge
 
PDF
Oracle Real Application Clusters (RAC) 12c Rel. 2 - Operational Best Practices
Markus Michalewicz
 
PPTX
Disaster Recovery Synapse
RicardoLinhares22
 
PPTX
OCI Overview
Kamil Wieczorek
 
PDF
Oracle Active Data Guard: Best Practices and New Features Deep Dive
Glen Hawkins
 
PPT
Oracle Architecture
Neeraj Singh
 
PDF
Oracle 12c and its pluggable databases
Gustavo Rene Antunez
 
PPTX
Basic oracle-database-administration
sreehari orienit
 
PPTX
Introduction to Oracle Database
puja_dhar
 
PPTX
Oracle GoldenGate 21c New Features and Best Practices
Bobby Curtis
 
Oracle Security Presentation
Francisco Alvarez
 
AV/DF Advanced Security Option
DLT Solutions
 
Best Practices for implementing Database Security Comprehensive Database Secu...
Kal BO
 
Introducing Oracle Audit Vault and Database Firewall
Troy Kitch
 
Active Directory Services
Varun Arora
 
Presentation database security audit vault & database firewall
xKinAnx
 
Backup and recovery in oracle
sadegh salehi
 
Database Security
alraee
 
Backup & recovery with rman
itsabidhussain
 
Backups And Recovery
asifmalik110
 
Security of the database
Pratik Tamgadge
 
Oracle Real Application Clusters (RAC) 12c Rel. 2 - Operational Best Practices
Markus Michalewicz
 
Disaster Recovery Synapse
RicardoLinhares22
 
OCI Overview
Kamil Wieczorek
 
Oracle Active Data Guard: Best Practices and New Features Deep Dive
Glen Hawkins
 
Oracle Architecture
Neeraj Singh
 
Oracle 12c and its pluggable databases
Gustavo Rene Antunez
 
Basic oracle-database-administration
sreehari orienit
 
Introduction to Oracle Database
puja_dhar
 
Oracle GoldenGate 21c New Features and Best Practices
Bobby Curtis
 
Ad

Similar to Oracle Database Security (20)

PPTX
Security Inside Out: Latest Innovations in Oracle Database 12c
Troy Kitch
 
PDF
Oracle-Security_Executive-Presentation
stefanjung
 
PDF
Oracle Database 11g Security and Compliance Solutions - By Tom Kyte
Edgar Alejandro Villegas
 
PDF
Security in oracle
ssuser40bb47
 
PDF
security in oracle database
ssuser40bb47
 
PPSX
Ppt dbsec-oow2013-avdf
Melody Liu
 
PDF
Oracle database 12c security and compliance
FITSFSd
 
PDF
Oracle Key Vault Data Subsetting and Masking
DLT Solutions
 
PDF
Bezpečná databáze a jak využít volně dostupný nástroj DBSAT
MarketingArrowECS_CZ
 
PPTX
Oracle 11g security - 2014
Connor McDonald
 
PPT
Irm11g overview
ORACLEISRAEL
 
PDF
Azure Information Protection
Robert Crane
 
PDF
Best Practices in Implementing Oracle Database Security Products
Estuate, Inc.
 
PPTX
Modern Data Security for the Enterprises – SQL Server & Azure SQL Database
WinWire Technologies Inc
 
PPTX
Securing data in Oracle Database 12c - 2015
Connor McDonald
 
PDF
The Benefits of Having a Data Privacy Vault Tech domain news.pdf
Domain News Tech
 
DOCX
Database security
Mehrdad Jingoism
 
PPTX
Introduction to Oracle Database Security.pptx
mhmad240
 
PDF
Microsoft 365 Security and Compliance
David J Rosenthal
 
PDF
Engineered Systems - nejlepší cesta, jak zabezpečit váš dataAccelerate Cloud
MarketingArrowECS_CZ
 
Security Inside Out: Latest Innovations in Oracle Database 12c
Troy Kitch
 
Oracle-Security_Executive-Presentation
stefanjung
 
Oracle Database 11g Security and Compliance Solutions - By Tom Kyte
Edgar Alejandro Villegas
 
Security in oracle
ssuser40bb47
 
security in oracle database
ssuser40bb47
 
Ppt dbsec-oow2013-avdf
Melody Liu
 
Oracle database 12c security and compliance
FITSFSd
 
Oracle Key Vault Data Subsetting and Masking
DLT Solutions
 
Bezpečná databáze a jak využít volně dostupný nástroj DBSAT
MarketingArrowECS_CZ
 
Oracle 11g security - 2014
Connor McDonald
 
Irm11g overview
ORACLEISRAEL
 
Azure Information Protection
Robert Crane
 
Best Practices in Implementing Oracle Database Security Products
Estuate, Inc.
 
Modern Data Security for the Enterprises – SQL Server & Azure SQL Database
WinWire Technologies Inc
 
Securing data in Oracle Database 12c - 2015
Connor McDonald
 
The Benefits of Having a Data Privacy Vault Tech domain news.pdf
Domain News Tech
 
Database security
Mehrdad Jingoism
 
Introduction to Oracle Database Security.pptx
mhmad240
 
Microsoft 365 Security and Compliance
David J Rosenthal
 
Engineered Systems - nejlepší cesta, jak zabezpečit váš dataAccelerate Cloud
MarketingArrowECS_CZ
 
Ad

Recently uploaded (20)

PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
Cloud computing and distributed systems.
kkkkkhan
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 

Oracle Database Security

  • 2. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.2 Billions of Database Records Breached Globally 97% of Breaches Were Avoidable with Basic Controls 98% records stolen from databases 84% records breached using stolen credentials 92% discovered by third party
  • 3. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.3 Oracle Database Security Solutions Defense-in-Depth for Maximum Security Activity Monitoring Database Firewall Auditing and Reporting DETECTIVE Redaction and Masking Privileged User Controls Encryption PREVENTIVE ADMINISTRATIVE Sensitive Data Discovery Configuration Management Privilege Analysis
  • 4. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.4  Transparent data encryption  Prevents access to stored data  Built-in two-tier key management  Support for HSM/KMS  Integration with critical Oracle Database technologies Oracle Advanced Security Encryption is the Foundation Preventive Control for Oracle Databases Disk Backups Exports Off-Site Facilities Applications
  • 5. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.5  Replace sensitive app data  Referential integrity preserved  Extensible template library  Automated masking policies  Support for non-Oracle databases Oracle Data Masking Masking Data for Non-Production Use Preventive Control for Oracle Databases LAST_NAME SSN SALARY ANSKEKSL 323—23-1111 60,000 BKJHHEIEDK 252-34-1345 40,000 LAST_NAME SSN SALARY AGUILAR 203-33-3234 40,000 BENSON 323-22-2943 60,000 Production Non-Production Dev Test Production
  • 6. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.6  Limit DBA access to app data  Multi-factor authorization  Enforce enterprise data governance, least privilege  Realms create protective zones  Out-of-the-box application policies Database Vault Privileged User Controls Preventive Control for Oracle Databases Procurement HR Finance select * from finance.customers Application DBA Applications Security DBA DBA
  • 7. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.7 Oracle Label Security Label Based Access Control Preventive Control for Oracle Databases Transactions Report Data Reports Confidential Sensitive Sensitive Confidential Public  Virtual information partitioning  Apply labels to users and data  Flexible classification labels  Automatically enforced row level access control  Transparent to applications
  • 8. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.8  Monitor database traffic  Detect, block unauthorized activity including SQL injection attacks  Unique SQL grammar analysis  Whitelists, blacklists enforce activity  Scalable software appliance Oracle Audit Vault and Database Firewall Database Activity Monitoring and Firewall Detective Control for Oracle and non-Oracle Databases Block Log Allow Alert SubstituteApps Whitelist Blacklist SQL Analysis Policy Factors Users
  • 9. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.9 Audit, Report, and Alert in Real-Time Detective Control for Oracle and non-Oracle Databases Policies Built-in Reports Alerts Custom Reports ! Security Analyst OS & Storage Directories Databases Oracle Database Firewall Custom Audit Data & Event Logs SOC DBA  Secure centralized repository  Detect, alert suspicious activities  Out-of-the box custom and compliance reporting  Streamline database audits  Built-in separation of duties Oracle Audit Vault and Database Firewall Auditor
  • 10. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.10  Scan Oracle for sensitive data  Built-in, extensible definitions  Create and maintain application data models  Protect data appropriately: encrypt, redact, mask, audit… Oracle Enterprise Manager Discover Sensitive Data and Databases Administrative Control for Oracle Databases
  • 11. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.11  Discover and classify databases  Scan for best practices, standards  Detect unauthorized changes  Automated remediation  Patching and provisioning Oracle Database Lifecycle Management Configuration Management Administrative Control for Oracle Databases Discover Scan & Monitor Patch
  • 12. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.12  Enterprise ready  Security and compliance  Simple and flexible  Speed and scale oracle.com/goto/database/security-customers Oracle Database Security Customers Customer Benefits Customers Worldwide Rely on Oracle
  • 13. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.13 For More Information www.oracle.com/database/security