Registration

Our Service

Home
/ Services
/ Oracle Security

Oracle Security

Oracle delivers secure infrastructure through a wide range of products, processes, and technologies to help prevent unauthorized access to confidential information, reduce the cost of managing users, and facilitate privacy management.

Privileged User Access Control for Oracle Database

Oracle Database Vault helps organizations increase the security of existing applications and address regulatory mandates that call for separation-of-duties, least privilege and other preventive controls to ensure data integrity and data privacy. Oracle Database Vault proactively protects application data stored in the Oracle database from being accessed by privileged database users.

Overview

  • Preventive controls on privileged user access to application data
  • Multi-factor policies control database access based on built-in factors such as time of day, IP address, application name, and authentication method
  • Secure existing database environments transparently, eliminating costly and time consuming application changes

Benefits

  • Proactively safeguards application data stored in the Oracle database
  • Addresses compliance with regulatory requirements that call for separation of duties and least privilege
  • Restrict ad-hoc access to application data by preventing application bypass with multi-factor policies that are enforced in the database for high security and performance
  • Deploy with confidence by using certified default policies for Oracle E-Business Suite, Oracle PeopleSoft, and Oracle Siebel CRM applications

Oracle Audit Vault

Oracle Audit Vault provides a secure and scalable solution for consolidating audit data generated by Oracle, Microsoft SQL Server, IBM DB2 and Sybase ASE. Built-in reporting and alerting help enterprises more easily comply with both regulatory and internal reporting requirements. Oracle Audit Vault automates the audit consolidation process, turning audit data into an important security and compliance resource.

Enterprise Audit Data Consolidation and Lifecycle Management

Native audit data provides a complete view of database activity along with full execution context irrespective of whether the statement was executed directly, through dynamic SQL, or through stored procedures. In addition to consolidating audit data from databases, operating systems, and directories, the Audit Collection Plugin can be used to collect audit data from application tables or XML files, and transfer them to the Audit Vault Server. Audit data from databases is automatically purged after it has been moved to the Audit Vault Server. Audit Vault Server supports data retention policies spanning days, weeks, or years on a per source basis, making it possible to meet internal or external compliance requirements.

Oracle Database Firewall

Oracle Database Firewall is an active, real-time database firewall solution that provides white list, black list and exception list policies, intelligent and accurate alerts, and monitoring with very low management and administrative costs. Oracle Database Firewall is independent of the database configuration and operation. This independent boundary of protective shielding helps reduce the risk of data loss and helps organizations manage an ever changing landscape of regulations.

Unlike traditional SQL firewalls that relied on identifying out-of-policy SQL using strategies such as regular expressions, string matching, and schema comparison, Oracle Database Firewall delivers intelligent database firewall security, enabling policies to be set and adapted quickly and accurately. Organizations can choose to deploy Oracle Database Firewall in blocking mode as a database policy enforcement system to protect their database assets, or to just monitor database activity for supplemental auditing and compliance purposes.

Oracle Database Firewall monitors data access, enforces access policies, highlights anomalies and helps protect against network based attacks originating from outside or inside the organization. Attacks based on SQL injection can be blocked by comparing SQL against the approved white list of application SQL. Oracle Database Firewall is unique and offers organizations a first line of defense, protecting databases from threats and helping meet regulatory compliance requirement.

Oracle Audit Vault with Database Firewall 12.1

Oracle Audit Vault and Database Firewall (AVDF) secures databases and other critical components of IT infrastructure (such as operating systems) in two ways:

  • For databases and supported operating systems, it collects audit data, and makes it available in audit reports. For Oracle databases, Oracle Audit Vault and Database Firewall lets an auditor set audit policies and provision them from the Audit Vault Server console.

 

  • For databases, it provides a database firewall that can monitor and/or block SQL statements on the network based on a firewall policy designed by an auditor.

Oracle Advanced Security

Oracle Advanced Security transparent data encryption (TDE) provides the industry’s most advanced database encryption solution. TDE automatically encrypts data written to storage by the Oracle database and automatically decrypts the data after the requesting user or application has authenticated to the Oracle database and passed all access control checks including those enforced by Database Vault, Label Security and virtual private database. Database backups retain the data as encrypted, providing protection for backup media. Data exported into flat files from the Oracle Database can be encrypted as well. Both logical and physical standby databases can be configured with TDE to provide complete protection for sensitive data in high availability architectures. Advanced Security network encryption provides both SSL based and native network encryption capabilities to protect data in transit. Advanced Security strong authentication services support PKI, Kerberos and RADIUS for an alternative to existing password-based authentication.

Overview

  • Protects sensitive information without requiring changes to applications
  • Prevents access to data on the network, on storage media, and within the database from unauthorized disclosure
  • Provides separation of duties with support for centralized key management using  hardware security modules and key management systems
  • Supports multi-factor user authentication, including PKI, Kerberos, and  RADIUS-based strong authentication solutions

Benefits

  • Protect all application data quickly and easily by allowing you to encrypt the entire tablespace or specific sensitive columns without making any changes to existing  applications
  • Transparently encrypt Oracle database traffic, disk backups, and exports
  • Leverage secure, built-in management and integration with industry-leading  Hardware Security Modules (HSM) or other enterprise-wide management solutions Provide the highest level of identity assurance with support for PKI, Kerberos, and  RADIUS-based strong authentication solutions

Oracle Label Security

Oracle Label Security was introduced in Oracle8i to provide multi-level security  capabilities within the Oracle Database for government and defense organizations. Since then, the use of label based access control technology has expanded to commercial organizations addressing privacy and regulatory compliance requirements. Oracle Label Security has the ability to:

  • Control access based on data classification, adding a powerful dimension to the access control decision process.
  • Enforce traditional multi-level security (MLS) policies for government and defense applications.

 

In addition, Oracle Label Security user authorizations such as “Sensitive:PII” can be used:

For government and defense applications Oracle Label Security provides multi-level security (MLS) capabilities to protect classified information. Please refer to the Label Security best practices paper for more information on Oracle Label Security MLS capabilities.

Secure Your Non-Production Environments

Oracle Data Masking pack for Enterprise Manager helps organizations comply with data privacy and protection mandates that restrict the use of actual customer data. With Oracle Data Masking, sensitive information such as credit card or social security numbers can be replaced with realistic values, allowing production data to be safely used for  development, testing, or sharing with out-source or off-shore partners for other non-production purposes.

Overview

  • Sensitive information, such as credit card or social security numbers, can be replaced with realistic values
  • Production data can be safely used for development, testing, or sharing with out-source or off-shore partners
  • Uses a template library and format rules, consistently transforming data in order to maintain referential integrity for applications
  • Extensive search capabilities scan enterprise databases for sensitive data and rank results based on probability of match
  • Helps comply with data privacy mandates such as Sarbanes-Oxley, Payment Card Industry (PCI) Data Security Standard (DSS) and Health Insurance Portability and Accountability Act (HIPAA)

Benefits

  • Make the most of your data securely. Use production data freely in non-production environments without violating data privacy regulations or risking sensitive data leaks.
  • Save time and increase security with data masking policies. Security administrators define the masking rules once, which are then automatically applied every time the database administrator masks the database.
  • Address regulatory requirements. De-identifying sensitive data is increasingly being called out as critical technology in data privacy protection laws globally.

Oracle Secure Backup

Data Protection to Tape or Cloud Storage

Oracle Secure Backup consists of two offerings; both are integrated with Oracle  Recovery Manager (RMAN). Oracle Secure Backup, centralized tape backup  management, provides high performance and heterogeneous data protection in distributed UNIX, Linux, Windows, and Network Attached Storage (NAS) environments. Oracle  Secure Backup Cloud Module provides an integrated Oracle Database backup to  Amazon S3 cloud (Internet) storage.

Overview

  • Tape backup protection for heterogeneous file systems, NAS devices and Oracle Databases; Cloud backup for Oracle Databases
  • Centrally managed using a single console across the spectrum of servers and NAS devices
  • Automates tape retention, duplication and vaulting (rotation of tapes between  locations)
  • Secures backup data whether tapes are onsite, offsite or lost
  • Tight integration with Oracle products including Oracle Recovery Manager (RMAN), Oracle Exadata, Oracle Database, and Oracle Enterprise Manager

Benefits

  • Low cost enterprise data protection
  • Easy policy-driven media lifecycle management
  • Backup encryption and key management
  • Highly scalable deployment
  • Fastest Oracle Database backups to tape
redhat.png
itil-Certifications-e1682950590873.png
oracle-1.svg

Exatek is an IT Solutions Firm specialized in providing Professional Services and Integrated Solutions in the Oracle Technology, Oracle BI & EPM, and Red Hat Linux.

Facebook-f Twitter Instagram

Contact Us

Our Services

Quick Links

Copyright© 2023 Exatek. All rights reserved || Website by Sirah Studio.
Terms Of Use
Registration