Oracle University | Contact Us: Local: 1800 103 4775 Intl: +91 80 4108 4709
Oracle Database 11g: Security Release 2
Duration: 5 Days
What you will learn
In this course, students learn how they can use Oracle Database features to meet the security, privacy and compliance
requirements of their organization. The current regulatory environment of the Sarbanes-Oxley Act, HIPAA, the UK Data
Protection Act, and others requires better security at the database level. Students learn how to secure their database
and how to use the database features that enhance security. The course provides suggested architectures for common
problems. This course discusses the following security features of the database: auditing, encryption for Payment Card
Industry Data Security Standard (PCI DSS ) including encryption at the column, tablespace and file levels, Virtual
Private Database, Oracle Label Security and Enterprise User Security. Some of the Oracle Network security topics
included are: securing the listener and restricting connections by IP address.
Learn To:
Implement Oracle Database security features to ensure the data is secure
Implement Oracle Database security features to ensure compliance with regulations
A Live Virtual Class (LVC) is exclusively for registered students; unregistered individuals may not view an LVC at any
time. Registered students must view the class from the country listed in the registration form. Unauthorized recording,
copying, or transmission of LVC content may not be made.
Administrator
Database Administrators
Security Administrators
Support Engineer
System Analysts
Technical Administrator
Related Training
Required Prerequisites
Oracle Database 11g: Administration Workshop I
Oracle Database 11g: Administration Workshop I Release 2
Suggested Prerequisites
Oracle Database 11g: Administration Workshop II Release 2
Oracle Database 11g: Administration Workshop II
Course Objectives
Use basic Oracle Database security features
Choose a user authentication model
Copyright 2013, Oracle. All rights reserved.
Page 1
Secure the database and the listeners
Use the Enterprise Security Manager tool
Manage users using proxy authentication
Implement Enterprise User Security
Describe the benefits and requirements associated with the Oracle Advanced Security option
Manage secure application roles
Implement fine-grained access control
Manage Virtual Private Database
Implement fine-grained auditing
Use Transparent Data Encryption
Use file encryption
Encrypt and decrypt table columns
Set up Oracle Label Security policies
Course Topics
Introduction to Database Security
Fundamental Data Security Requirements
Data Security Concerns
Compliance Mandates
Security Risks
Developing Your Security Policy
Defining a Security Policy
Implementing a Security Policy
Techniques to Enforce Security
Choosing Security Solutions
Maintaining Data Integrity
Protecting Data
Controlling Data Access
Oracle Database Vault Overview
Oracle Audit Vault Overview
Combining Optional Security Features
Compliance Scanner
Enterprise Manager Database Control: Policy Trend
Basic Database Security
Database Security Checklist
Copyright 2013, Oracle. All rights reserved.
Page 2
Reducing Administrative Effort
Applying Security Patches
Default Security Settings
Secure Password Support
Enforcing Password Management
Protecting the Data Dictionary
System and Object Privileges
Auditing Database Users, Privileges, and Objects
Monitoring for Suspicious Activity
Standard Database Auditing
Setting the AUDIT_TRAIL
Specifying Audit Options
Viewing Auditing Options
Auditing the SYSDBA Users
Audit to XML Files
Value-Based Auditing
Auditing DML Statements
Fine-Grained Auditing (FGA)
Using the DBMS_FGA Package
FGA Policy
Triggering Audit Events
Data Dictionary Views
DBA_FGA_AUDIT_TRAIL
Enabling and Disabling an FGA Policy
Maintaining the Audit Trail
Using Basic User Authentication
User Authentication
Protecting Passwords
Creating Fixed Database Links
Encrypting Database Link Passwords
Using Database Links without Credentials
Using Database Links and Changing Passwords
Auditing with Database Links
Restricting a Database Link with Views
Using Strong Authentication
Strong Authentication
Single Sign-On
Public Key Infrastructure (PKI) Tools
Configuring SSL on the Server
Certificates
Using the orapki Utility
Using Kerberos for Authentication
Configuring the Wallet
Using Enterprise User Security
Enterprise User Security
Oracle Identity Management Infrastructure: Default Deployment
Oracle Database: Enterprise User security Architecture
Copyright 2013, Oracle. All rights reserved.
Page 3
Oracle Internet Directory Structure Overview
Installing Oracle Application Server Infrastructure
Managing Enterprise User Security
Creating a Schema Mapping Object in the Directory
Creating a Schema Mapping Object in the Directory
Using Proxy Authentication
Security Challenges of Three-Tier Computing
Common Implementations of Authentication
Restricting the Privileges of the Middle Tier
Authenticating Database and Enterprise Users
Using Proxy authentication for Database Users
Proxy Access Through SQL*Plus
Revoking Proxy Authentication
Data Dictionary Views for Proxy Authentication
Using Privileges and Roles
Authorization
Privileges
Benefits of Roles
CONNECT Role Privileges
Using Proxy Authentication with Roles
Creating an Enterprise Role
Securing Objects with Procedures
Securing the Application Roles
Access Control
Description of Application Context
Using the Application Context
Setting the Application Context
Application Context Data Sources
Using the SYS_CONTEXT PL/SQL Function
PL/SQL Packages and Procedures
Implementing the Application Context Accessed Globally
Data Dictionary Views
Implementing Virtual Private Database
Understanding Fine-Grained Access Control
Virtual Private Database (VPD)
How Fine-Grained Access Control Works
Using DBMS_RLS
Exceptions to Fine-Grained Access Control Policies
Implementing a VPD Policy
Implementing Policy Groups
VPD Best Practices
Oracle Label Security Concepts
Access Control: Overview
Discretionary Access Control
Oracle Label Security
How Sensitivity Labels are Used
Installing Oracle Label Security
Copyright 2013, Oracle. All rights reserved.
Page 4
Oracle Label Security Features
Comparing Oracle Label Security and VPD
Analyzing Application Needs
Implementing Oracle Label Security
Implementing the Oracle Label Security Policy
Creating Policies
Defining Labels Overview
Defining Compartments
Identifying Data Labels
Access Mediation
Adding Labels to Data
Assigning User Authorization Labels
Using the Data Masking Pack
Understanding Data Masking
Data Masking Pack Features
Identifying Sensitive Data for Masking
Types of Built-in Masking Primitives and Routines
Data Masking of the EMPLOYEES Table
Implementing a Post-Processing Function
Viewing the Data Masking Impact Report
Creating an Application Masking Template by Exporting Data Masking Definitions
Encryption Concepts
Understanding Encryption
Problems that Encryption Solves
Encryption is not Access Control
What to Encrypt
Data Encryption Challenges
Storing the Key in the Database
Letting the User Manage the Key
Storing the Key in the Operating System
Using Application-Based Encryption
DBMS_CRYPTO Package Overview
Using the DBMS_CRYPTO Package
Generating Keys Using RANDOMBYTES
Using ENCRYPT and DECRYPT
Enhanced Security Using the Cipher Block Modes
Hash and Message Authentication Code
Applying Transparent Data Encryption
Transparent Data Encryption (TDE)
Creating the Master Key
Opening the Wallet
Using Auto Login Wallet
Resetting (Rekeying) the Unified Master Encryption Key ** 11.2 **
Using Hardware Security Modules
TDE Column Encryption Support
Creating an Encrypted Tablespace
Copyright 2013, Oracle. All rights reserved.
Page 5
Applying File Encryption
RMAN Encrypted Backups
Oracle Secure Backup Encryption
Creating RMAN Encrypted Backups
Using Password Mode Encryption
Restoring Encrypted Backups
Data Pump Encryption
Using Dual Mode Encryption
Encrypting Dump Files
Oracle Net Services: Security Checklists
Overview of Security Checklists
Securing the Client Computer
Configuring the Browser
Network Security Checklist
Using a Firewall to Restrict Network Access
Restricting Network IP Addresses: Guidelines
Configuring IP Restrictions with Oracle Net Manager
Configuring Network Encryption
Securing the Listener
Listener Security Checklist
Restricting the Privileges of the Listener
Moving the Listener to a Nondefault Port
Preventing Online Administration of the Listener
Using the INBOUND_CONNECT_TIMEOUT Parameter
Analyzing Listener Log Files
Administering the Listener Using TCP/IP with SSL
Setting Listener Logging Parameters
Related Courses
Oracle Database 11g: Security
Copyright 2013, Oracle. All rights reserved.
Page 6
Вам также может понравиться
- (English For Everyone) DK - English For Everyone Junior - Beginner's Course - Look, Listen and learn-DK Children (2020) PDFДокумент256 страниц(English For Everyone) DK - English For Everyone Junior - Beginner's Course - Look, Listen and learn-DK Children (2020) PDFasdfgg ggghj94% (62)
- Oracle® Data Integrator: October 2015Документ12 страницOracle® Data Integrator: October 2015JinendraabhiОценок пока нет
- Std11 Acct EMДокумент159 страницStd11 Acct EMniaz1788100% (1)
- (English For Everyone) DK - English For Everyone Junior - Beginner's Course - Look, Listen and learn-DK Children (2020) PDFДокумент256 страниц(English For Everyone) DK - English For Everyone Junior - Beginner's Course - Look, Listen and learn-DK Children (2020) PDFasdfgg ggghj94% (62)
- ETL Component Functions and DescriptionsДокумент28 страницETL Component Functions and DescriptionsJinendraabhiОценок пока нет
- Oracle® Fusion Middleware: Connectivity and Knowledge Modules Guide For Oracle Data Integrator 12c (12.2.1)Документ324 страницыOracle® Fusion Middleware: Connectivity and Knowledge Modules Guide For Oracle Data Integrator 12c (12.2.1)JinendraabhiОценок пока нет
- 6 Order Management and Supply Chain AnalyticsДокумент30 страниц6 Order Management and Supply Chain AnalyticsJinendraabhiОценок пока нет
- Informatica 9 InstallationДокумент2 страницыInformatica 9 InstallationJinendraabhiОценок пока нет
- Keyboard SkillsДокумент17 страницKeyboard SkillsJinendraabhiОценок пока нет
- Oracle® Fusion Middleware: Application Adapters Guide For Oracle Data Integrator 12c (12.2.1)Документ140 страницOracle® Fusion Middleware: Application Adapters Guide For Oracle Data Integrator 12c (12.2.1)JinendraabhiОценок пока нет
- Keyboard SkillsДокумент17 страницKeyboard SkillsJinendraabhiОценок пока нет
- Bip EgДокумент14 страницBip EgJinendraabhiОценок пока нет
- Bi 11gr1certmatrix 11 1 1 9 0 2541437Документ32 страницыBi 11gr1certmatrix 11 1 1 9 0 2541437JinendraabhiОценок пока нет
- ODIDGДокумент318 страницODIDGJinendraabhiОценок пока нет
- Oracle® Fusion Middleware: Migrating From Oracle Warehouse Builder To Oracle Data Integrator 12c (12.1.2)Документ116 страницOracle® Fusion Middleware: Migrating From Oracle Warehouse Builder To Oracle Data Integrator 12c (12.1.2)JinendraabhiОценок пока нет
- Oracle® Fusion Middleware: Developing Knowledge Modules With Oracle Data Integrator 12c (12.2.1)Документ170 страницOracle® Fusion Middleware: Developing Knowledge Modules With Oracle Data Integrator 12c (12.2.1)JinendraabhiОценок пока нет
- What Is Difference Between SUBSTR and INSTR?: The Logic To Send Half Records From Flat File Source To Target DatabaseДокумент2 страницыWhat Is Difference Between SUBSTR and INSTR?: The Logic To Send Half Records From Flat File Source To Target DatabaseJinendraabhiОценок пока нет
- Oracle® Fusion Middleware: Administering Oracle Data Integrator 12c (12.2.1)Документ210 страницOracle® Fusion Middleware: Administering Oracle Data Integrator 12c (12.2.1)JinendraabhiОценок пока нет
- Bi 11gr1certmatrix 11 1 1 9 0 2541437Документ32 страницыBi 11gr1certmatrix 11 1 1 9 0 2541437JinendraabhiОценок пока нет
- OBIEE Installation Guide v2Документ23 страницыOBIEE Installation Guide v2Amit SharmaОценок пока нет
- Bi Project Implementation Life CycleДокумент5 страницBi Project Implementation Life CycleRajesh GlrОценок пока нет
- Obiee Cache ManagementДокумент15 страницObiee Cache ManagementJinendraabhi100% (1)
- Sample Resume For ETL Testing 2+yrsДокумент4 страницыSample Resume For ETL Testing 2+yrsJinendraabhi100% (3)
- Honagunta ChandralambaДокумент1 страницаHonagunta ChandralambaJinendraabhiОценок пока нет
- SQL Tuning or SQL OptimizationДокумент6 страницSQL Tuning or SQL OptimizationJinendraabhiОценок пока нет
- Infa Folktalks QnsДокумент35 страницInfa Folktalks QnsJinendraabhiОценок пока нет
- ODI 12 C Setup DetailsДокумент7 страницODI 12 C Setup DetailsJinendraabhiОценок пока нет
- QCP - 2 - NotesДокумент34 страницыQCP - 2 - NotesJinendraabhi100% (1)
- SQL Tuning or SQL OptimizationДокумент6 страницSQL Tuning or SQL OptimizationJinendraabhiОценок пока нет
- QCP - 1 - NotesДокумент18 страницQCP - 1 - NotesJinendraabhi100% (8)
- Hidden Figures: The American Dream and the Untold Story of the Black Women Mathematicians Who Helped Win the Space RaceОт EverandHidden Figures: The American Dream and the Untold Story of the Black Women Mathematicians Who Helped Win the Space RaceРейтинг: 4 из 5 звезд4/5 (890)
- The Yellow House: A Memoir (2019 National Book Award Winner)От EverandThe Yellow House: A Memoir (2019 National Book Award Winner)Рейтинг: 4 из 5 звезд4/5 (98)
- The Little Book of Hygge: Danish Secrets to Happy LivingОт EverandThe Little Book of Hygge: Danish Secrets to Happy LivingРейтинг: 3.5 из 5 звезд3.5/5 (399)
- The Subtle Art of Not Giving a F*ck: A Counterintuitive Approach to Living a Good LifeОт EverandThe Subtle Art of Not Giving a F*ck: A Counterintuitive Approach to Living a Good LifeРейтинг: 4 из 5 звезд4/5 (5794)
- Never Split the Difference: Negotiating As If Your Life Depended On ItОт EverandNever Split the Difference: Negotiating As If Your Life Depended On ItРейтинг: 4.5 из 5 звезд4.5/5 (838)
- Elon Musk: Tesla, SpaceX, and the Quest for a Fantastic FutureОт EverandElon Musk: Tesla, SpaceX, and the Quest for a Fantastic FutureРейтинг: 4.5 из 5 звезд4.5/5 (474)
- A Heartbreaking Work Of Staggering Genius: A Memoir Based on a True StoryОт EverandA Heartbreaking Work Of Staggering Genius: A Memoir Based on a True StoryРейтинг: 3.5 из 5 звезд3.5/5 (231)
- The Emperor of All Maladies: A Biography of CancerОт EverandThe Emperor of All Maladies: A Biography of CancerРейтинг: 4.5 из 5 звезд4.5/5 (271)
- The Gifts of Imperfection: Let Go of Who You Think You're Supposed to Be and Embrace Who You AreОт EverandThe Gifts of Imperfection: Let Go of Who You Think You're Supposed to Be and Embrace Who You AreРейтинг: 4 из 5 звезд4/5 (1090)
- The World Is Flat 3.0: A Brief History of the Twenty-first CenturyОт EverandThe World Is Flat 3.0: A Brief History of the Twenty-first CenturyРейтинг: 3.5 из 5 звезд3.5/5 (2219)
- Team of Rivals: The Political Genius of Abraham LincolnОт EverandTeam of Rivals: The Political Genius of Abraham LincolnРейтинг: 4.5 из 5 звезд4.5/5 (234)
- The Hard Thing About Hard Things: Building a Business When There Are No Easy AnswersОт EverandThe Hard Thing About Hard Things: Building a Business When There Are No Easy AnswersРейтинг: 4.5 из 5 звезд4.5/5 (344)
- Devil in the Grove: Thurgood Marshall, the Groveland Boys, and the Dawn of a New AmericaОт EverandDevil in the Grove: Thurgood Marshall, the Groveland Boys, and the Dawn of a New AmericaРейтинг: 4.5 из 5 звезд4.5/5 (265)
- The Unwinding: An Inner History of the New AmericaОт EverandThe Unwinding: An Inner History of the New AmericaРейтинг: 4 из 5 звезд4/5 (45)
- The Sympathizer: A Novel (Pulitzer Prize for Fiction)От EverandThe Sympathizer: A Novel (Pulitzer Prize for Fiction)Рейтинг: 4.5 из 5 звезд4.5/5 (119)
- Deployment Guide App Template Oracle EBSДокумент16 страницDeployment Guide App Template Oracle EBSSudhakar GanjikuntaОценок пока нет
- MacroДокумент3 страницыMacrosaurilla100% (1)
- Network Security, Firewalls, and VpnsДокумент2 страницыNetwork Security, Firewalls, and VpnsManuel Cespedes0% (4)
- NeticaJ ManДокумент119 страницNeticaJ MangoodboyanushОценок пока нет
- Object GridДокумент215 страницObject GridkguzhenОценок пока нет
- 5 - Assembly Language BasicsДокумент41 страница5 - Assembly Language BasicsAsadОценок пока нет
- David Marshall, Wade A. Reynolds, Dave McCrory-Advanced Server Virtualization - VMware and Microsoft Platforms in The Virtual Data Center-Auerbach Publications (2006) PDFДокумент759 страницDavid Marshall, Wade A. Reynolds, Dave McCrory-Advanced Server Virtualization - VMware and Microsoft Platforms in The Virtual Data Center-Auerbach Publications (2006) PDFZarko ZecevicОценок пока нет
- Divide and ConquerДокумент4 страницыDivide and ConquerAli AliОценок пока нет
- Set 3Документ25 страницSet 3AAОценок пока нет
- QGIS Training AtlantisДокумент38 страницQGIS Training Atlantisjunior_jiménez_7Оценок пока нет
- C Notes by Kumar HarshaДокумент41 страницаC Notes by Kumar HarshaKumar Harsha100% (1)
- ETLDesignMethodologyDocument SSISДокумент12 страницETLDesignMethodologyDocument SSISachvm100% (1)
- Topic Models and Latent Dirichlet AllocationДокумент2 страницыTopic Models and Latent Dirichlet AllocationNaveed MastanОценок пока нет
- Internet: - The Term Internet Has Been Coined From Two Terms, I.e.Документ11 страницInternet: - The Term Internet Has Been Coined From Two Terms, I.e.Jesse JhangraОценок пока нет
- High Speed RSA ImplementationsДокумент86 страницHigh Speed RSA ImplementationsrodrigofranОценок пока нет
- Flashboot Xiaomi Mi3wДокумент5 страницFlashboot Xiaomi Mi3wAbdul Hamid0% (1)
- You Me IMLog V2Документ47 страницYou Me IMLog V2Bani BrneoОценок пока нет
- Rules for Environment DiagramsДокумент1 страницаRules for Environment DiagramsDaniel AuОценок пока нет
- 2003 Vs 2008Документ336 страниц2003 Vs 2008suneel4tuОценок пока нет
- PolymorphismДокумент24 страницыPolymorphismjamesramsdenОценок пока нет
- DFT QuestionsДокумент8 страницDFT QuestionsShobhit Mahawar100% (3)
- How Do I Use Delta CADДокумент1 страницаHow Do I Use Delta CADprofesorbartolomeoОценок пока нет
- Improved Trial Division Algorithm by Lagrange's Interpolation FunctionДокумент5 страницImproved Trial Division Algorithm by Lagrange's Interpolation FunctionEditor IJRITCCОценок пока нет
- SCM Build and Release PravinДокумент5 страницSCM Build and Release PravinShelly DeanОценок пока нет
- DSLS 1 PDFДокумент153 страницыDSLS 1 PDFBruno CarboniОценок пока нет
- Shellscriptingbook-Sample - Steves Bourne-Bash Scripting Tutorial PDFДокумент16 страницShellscriptingbook-Sample - Steves Bourne-Bash Scripting Tutorial PDFAnonymous Wu14iV9dqОценок пока нет
- CDN DDR CTRL 16ffc Datasheet v1.0Документ40 страницCDN DDR CTRL 16ffc Datasheet v1.0JanakiramanRamanathanОценок пока нет
- Maximum Mark: 75: Cambridge International Examinations Cambridge International General Certificate of Secondary EducationДокумент8 страницMaximum Mark: 75: Cambridge International Examinations Cambridge International General Certificate of Secondary EducationShenal PereraОценок пока нет
- Configuring Intergraph Smart 3D Application Servers and Databases Creations - GOVARDHAN GUNNALAДокумент16 страницConfiguring Intergraph Smart 3D Application Servers and Databases Creations - GOVARDHAN GUNNALAJason RogersОценок пока нет
- MTKV251Документ1 страницаMTKV251Cercel MariusОценок пока нет
