Oracle Security 通过强制职责分工和权限分离确保数据安全.pptxVIP

Copyright ? 2019 Oracle and/or its affiliates.Configuring Safe Database Management By Enforcing Separation of DutiesRon SoltaniSr. Principal InstructorOracle UniversityCopyright ? 2019 Oracle and/or its affiliates.Presentation ObjectivesIntroductionUnderstanding Database Security and its ComponentsUnderstanding SQL InjectionUnderstanding Separation of DutyUnderstanding Invoker’s Right Procedures and ViewsCreating Schema Only AccountCreating Security Schema to Manage User Data SecurityConclusioresentation ObjectivesIntroductionUnderstanding Database Security and its ComponentsUnderstanding SQL InjectionUnderstanding Separation of DutyUnderstanding Invoker’s Right Procedures and ViewsCreating Schema Only AccountCreating Security Schema to Manage User Data SecurityConclusioresentation GoalThe goal of this presentation is to provide detail information about security configuration related to database and application schema management by providing a good understanding of:What is Database Security and its ComponentsWhat is SQL InjectionUnderstandSeparation of DutyUnderstanding Invoker’s Right Procedures and ViewsCreating Schema Only AccountCreating Security Schema to Manage User Data SecurityPresentation ObjectivesIntroductionUnderstanding Database Security and its ComponentsUnderstanding SQL InjectionUnderstanding Separation of DutyUnderstanding Invoker’s Right Procedures and ViewsCreating Schema Only AccountCreating Security Schema to Manage User Data SecurityConclusioundamental Data Security RequirementsSecurity standards require security policies to meet fundamental data security requirements:Confidentiality: Ensure that individuals see only the data they are supposed to seeIntegrity: Ensure that data remains validAvailability: Ensure that denial-of-service attacks do not impact access to and use of systemsInsider threatsData Security ConcernsIndustrial espionageSecurity threatsIdentity theftData consolidationGlobalizationRight sourcing