| |
 |
|
Oracle Tips by Burleson |
Chapter 6 Oracle Encryption
What is Encryption?
I have a tough time remembering numbers – any
number – ATM Card PIN, Social Security Number, telephone numbers,
pretty much anything that starts or ends with or is enclosed by
numbers. So I have a simple infrastructure – I write the numbers on
the objects they are used with, in code – a code only I can
decipher. In other words, I encrypt them to be decrypted using the
original algorithm used to encrypt them.
In our effort to prevent and discourage hackers
from obtaining valuable information from the database, we have
discussed the essential steps to take to prohibit unauthorized
access to the database and the tables. But what if the hacker
somehow gets in? In a recent report by a prestigious research
company, and also reported by other independent studies, most of
unauthorized data access is done from inside, not outside.
In a typical
setup, the database is behind a firewall and is not necessarily open
to external traffic – making it difficult, if not impossible, for
hackers to break in from outside. However, lax security policies or
employees with their own agenda can "sniff in" the sensitive data.
Sometimes the urge to do that is purely benign – perhaps for a
conversation piece in a cocktail party; but sometimes the intent is
to obtain sensitive information. In an insurance company, the
information contained within the annals of the database can be quite
valuable,
The above text is
an excerpt from:
Oracle Privacy Security Auditing
The
Final Word on Oracle Security
This is the only authoritative
book on Oracle Security, Oracle Privacy, and Oracle Auditing written
by two of the world’s leading Oracle Security experts.
This indispensable book is only $39.95 and has an
immediate download of working security scripts:
http://rampant-books.com/book_2003_2_audit.htm
|
Download your Oracle scripts now:
www.oracle-script.com
The
definitive Oracle Script collection for every Oracle professional DBA
|
|
