Oracle Database Security: Preventive Controls

07/06/2021 - 11/06/2021
Kalender-Import: iCal

ETC Trainingcenter
Modecenterstrasse 22, 1030 - Wien

Für dieses Seminar werden folgende Kenntnisse empfohlen:

    Required Prerequisites

  • Create PL/SQL procedures
  • Create and manage tables and tablespaces
  • Create and manage users, roles, and privileges
  • Oracle Database 12c: Administration Workshop Ed 2
  • Introduction to Oracle Database Security Ed 1
  • Suggested Prerequisites

  • Familarity with Oracle Enterprise Manager Cloud Control
  • Familarity with SQL*Plus, SQL*Developer
  • Use Flashback Data Archive and Create PL/SQL procedures
  • Use Oracle Data Pump export and import and Perform RMAN bac

In the Oracle Database Security: Preventive Controls course, students learn how they can use Oracle Database
Security products and technologies to meet the security, privacy and compliance requirements of their organization.

The current regulatory environment of the Sarbanes-Oxley Act, HIPAA, the UK Data Protection Act, and others, requires
better security at the database level. Students learn how to secure the access to their databases and how to use the
Oracle Database Security products and technologies that enhance data access and confidentiality. The course provides
suggested Oracle solutions for common problems.

Learn To:

  • Choose Oracle Database Security products and technologies to meet security requirements.
  • Secure the database access by database or enterprise users with basic or strong authentication such as SSL, Kerberos and Radius.
  • Protect against database bypass by using Transparent Database Encryption.
  • Use Oracle Wallets and Oracle Key Vault to manage encryption keys.
  • Discover sensitive columns such as Credit Card Numbers by using Application Data Modeling.
  • Minimize sensitive data proliferation to test/dev environments by using Data Masking.
  • Minimize storage costs in test/dev environments by using Data Subsetting.
  • Reduce sensitive data exposure in applications by using Data Redaction.
  • Understand and use Oracle Database Vault.

Benefits To You
This course discusses the following security features of the database: authentication, data access control including user
authorizations by using privileges and roles, data confidentiality including Data Redaction, Oracle Data Masking and
Subsetting, Transparent Sensitive Data Protection, encryption at the column, tablespace and file levels by using
Transparent Data Encryption. This course discusses the use of the Oracle Key Vault to centrally manage keys across
the enterprise. Oracle Database Vault is used to enforce Separation of Duties at the DBA level.
Hands-on practices and available demonstrations help students learn how to use most of the features of Oracle
Database 12c to secure their data center, by using Oracle Enterprise Manager Cloud Control or other simple tools such
as SQL*Plus.
Dieses Seminar richtet sich an:

  • Database Administrators
  • Network Administrator
  • Security Administrators
  • Support Engineer
  • System Analyst

  1. Introduction
    1. Course Objectives
    2. Related courses and where this fits
    3. Course Schedule and Appendices
  2. Using Basic and Strong User Authentication
    1. Basic Authentication
    2. Strong Authentication
    3. Database Link Passwords Protection
    4. Security of Roles
  3. Configuring Global User Authentication
    1. About Enterprise User Management (EUS)
    2. EUS and LDAP Integration
  4. Using Proxy Authentication
    1. Security Challenges of Three-Tier Computing
    2. Proxy Authentication Solutions
  5. Encryption Concepts and Solutions
    1. Concepts
    2. Solutions
    3. Oracle Solutions
  6. Using Built-In Encryption in Applications
    1. Usage
  7. Using Transparent Data Encryption (TDE)
    1. Overview
    2. The Master Keys and the Keystore
    3. Hardware Keystore
    4. Encryption
  8. Database Storage Security
    1. RMAN and OSB Backups
    2. RMAN Encryption Modes
    3. Data Pump Export and Import of Encrypted Data
  9. Introduction to Oracle Key Vault
    1. What is Oracle Key Vault?
    2. Using Oracle Key Vault
  10. Installing Oracle Key Vault
    1. Installation
    2. Endpoints
  11. Using Oracle Key Vault
    1. Reviewing or refreshing prerequisite knowledge
    2. Contrasting Oracle Wallets and OKV Virtual Wallets
  12. Administering Oracle Key Vault
    1. Roles in detail
    2. Best practice tips for Oracle Key Vault
  13. Automated Sensitive Data Discovery
    1. Overview
    2. Application Data Modeling
    3. Managing Application Data Models
  14. Oracle Data Masking and Subsetting overview
    1. Overview
  15. Masking Sensitive Data in Non-Production Environments
    1. Exploring Data Masking Format Library
    2. Data Masking Transformations
  16. Subsetting Data
    1. Exploring Data Subsetting definitions
  17. Managing Data Masking and Subsetting
    1. Administering Data Masking and Subsetting
    2. Heterogeneous masking and subsetting
    3. Best Practices
  18. Oracle Advanced Security – Data Redaction
    1. Need to redact or dynamically mask data
    2. Implementing Data Redaction
    3. Data Redaction usage guidelines
  19. Oracle Transparent Sensitive Data Protection (TSDP)
    1. TSDP Implementation
  20. Oracle Database Vault Overview
    1. Understand Database Vault Controls
    2. What is a Realm? A Rule Set? A Command Rule? A Secure Application Role?
    3. What are Factors and Identities? Component Relationships and Evaluation?
    4. Database Vault Effects and Example
    5. Software Overview: API, Views, and Integration with Other Oracle Products
  21. Configuring Database Vault
    1. Configuring Database Vault
    2. Database Vault Roles and Schema
    3. What to Expect After You Enable Database Vault
    4. Securing Data in Multitenant Environments
    5. Configuring Database Vault Users in Cloud Control 12c
  22. Analyzing Privileges
    1. Privilege Analysis Overview and Features
    2. How Does it Work?
    3. What are The Types of Analysis, Tools, and Prerequisites?
    4. Managing Privilege Analysis Policies
    5. Use Cases


Mehr Artikel

Tina Stewart leitet den Bereich Global Market Strategy für Cloud Protection und Licensing bei Thales. (c) Thales

Die Zukunft der Datensicherheit

IT-Sicherheitsabteilungen sind in diesem Jahr gefordert wie vielleicht noch nie und sind entsprechend ausgelastet. Vielleicht ist jetzt ein guter Zeitpunkt, sich daran zu erinnern, dass die Auseinandersetzung mit der langfristigen Sicherheit von Daten der Schlüssel zum Aufbau einer Zukunft ist, der wir alle vertrauen können. Ein Kommentar von Tina Stuart. […]