Oracle Database Security

Introduction............................................................................................................................................. 2
Oracle basic Database Security ............................................................................................................... 2
Advance Database Security ..................................................................................................................... 2
Certification ............................................................................................................................................. 2
Links ......................................................................................................................................................... 3
Oracle Database Vault ............................................................................................................................. 4

Introduction

The scope of this document is learning to become Database Security Professional and
exploring your knowledge with Oracle Database Security concepts.
It was a marvelous pleasure indeed for me to enhance my knowledge on this topic. To begin
with on this topic I would like to ask you or question yourself from where the data is served
to business? Where is the data saved by all kinds of organizations on this world? It is a
Database that serves the needs.
Security is build initially on a Database. Let's take a live example to understand this concept .
The business or the functional people of an organization develop many rules or strategies for
the business. In this case the 3rd parties or end customers get the data indirectly from a
database by some kind of automation techniques or logic or tools.
For example a Macro is developed and stored in an Excel Sheet to retrieve data from a
Production Database.
It is fine if the pulled out data is not breaking any kind of business rule. But, this is not
considered as Database Security or an appropriate Security measure.

Who is reading the data from this Excel Sheet? What is an alternative for this kind of
Automation etc?
If your goal is to learn about this I just share the links that I went through because it is
unofficial to provide the Oracle Information (MOS Documents) on the Internet.
Nevertheless we can start reading about this from the Oracle Guru Dr. Tim Hall of oraclebase.com

Oracle basic Database Security

http://www.oracle-base.com/articles/misc/basic-security-measures-for-oracle.php
When we read the advance topics about this topic it should be understood that there are so many
products from Oracle for Security. This kind of products are of course out of the scope for a small or
Mid-sized Companies.

Advance Database Security

http://de.scribd.com/doc/62383710/11gR2-Security
If you are working in a small organization like am and want to provide security for the Databases we
should not hesitate to start practicing creation of Roles etc.

Certification
http://www.oracle.com/partners/en/knowledge-zone/database/oracle-database-11g/1z1-528-exampage-170325.html

Links
Oracle basic Database Security
http://www.oracle-base.com/articles/misc/basic-security-measures-for-oracle.php
Advance Oracle Database Security
http://www.petefinnigan.com/orasec.htm
Advance Database Security
http://de.scribd.com/doc/62383710/11gR2-Security
Database Security Concepts Document on Oracle Support that links to various Security
Documents
https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=280743648778667&id=
207959.1&displayIndex=2&_afrWindowMode=0&_adf.ctrlstate=a8xmvq0g9_149#aref_section318
Configuring SSL for Client Authentication and Encryption With Self Signed Certificates On
Both Ends Using Oracle ORAPKI and Oracle Wallet Manager
(Doc ID 401251.1)
https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=280949881057460&id=
401251.1&_afrWindowMode=0&_adf.ctrl-state=a8xmvq0g9_191
Using SSL Configuration Tool
http://docs.oracle.com/cd/E23943_01/core.1111/e10105/ssl_scripting.htm#CHDFCFJG
3rd Party Tools access to connect database denied
https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=110718484509182&id=
281229.1&_afrWindowMode=0&_adf.ctrl-state=px1lw76h6_68
Oracle Wallet Configuration and related Information
http://oraclepoint.com/oralife/2010/10/08/configuring-wallet-manager-to-enable-httpsconnect-with-oracle-11g-database/
Install and configure Database Audit
http://www.oracle-base.com/articles/11g/auditing-enhancements-11gr2.php
Fine-Grained Access Control List
http://oracle-base.com/articles/11g/fine-grained-access-to-network-services-11gr1.php

Oracle Database Vault

Database Vault
https://support.oracle.com/epmos/faces/SearchDocDisplay?_adf.ctrlstate=1cliumtt1m_4&_afrLoop=549833463993696 doc. id 1195205.1
Further Links for ORACLE Database Vault
Note 1102605.1- How To Install Oracle Database Vault On An Existing 11g Oracle Home ?
Note 754065.1 - Installing Database Vault in a Data Guard Environment
Note 1335363.1- How To Deploy The DVA Webapp In The OC4J Container Of The DB
Console ?
Note 972477.1 - Examples on How to Set Up Database Vault Policies
Best Practices with Database Vault
http://www.oracle.com/technetwork/database/security/twp-database-vault-bestpractices132020.pdf
DBA Best Practices with Database Vault
http://www.oracle.com/technetwork/database/security/twp-databasevault-dba-bestpractices199882.pdf
Oracle Database Vault 11g R2
http://docs.oracle.com/cd/E11882_01/server.112/e23090/toc.htm
SAP Certification with Oracle Database Vault (Doc ID 852482.1)
https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=551169394223139&id=
852482.1&_afrWindowMode=0&_adf.ctrl-state=1cliumtt1m_200
Check list for Oracle Database Security (MOS)
http://docs.oracle.com/cd/E11882_01/network.112/e36292.pdf
http://docs.oracle.com/cd/E11882_01/network.112/e36292/toc.htm
Some extra links to understand basics of Application Security
http://www.sysdba.de/oracle-dokumentation/11.1/network.111/b28531/app_devs.htm
Security in Cloud
http://www.safecode.org/publications/SAFECode_CSA_Cloud_Final1213.pdf
:-)