Security Benefits of Implementing Database Vault

Security Benefits of Implementing Database Vault Introduction: Increase in the security of existing applications and address regulatory makes it necessary to have a fine-grained access control over the data of your database. Database vault enforces separation of accesses and privileges for various users. Oracle Database Vault proactively protects application data from being accessed by privileged database users. Components of Database Vault:Oracle Database Vault Access Control Components - Database vault enables you to create various Access Control Components that manage the security of the database. The various components are - Realms, Command rules, Factors, Rule sets, Secure application roles. Oracle Database Vault Administrator - This is a Java based application built on top of the Oracle Database Vault PL/SQL API. This enables security managers to control the access to the database through a user-friendly interface. Oracle Database Vault Administrator provides an extensive collection of security-related reports that assist in understanding the baseline security configuration.Oracle Database Vault Configuration Assistant (DVCA) - To perform maintenance tasks on your Oracle Database Vault installation, use the command-line  utility  DVCA. Oracle Database Vault DVSYS and DVF Schemas - Oracle Database Vault provides a schema, DVSYS, which stores the database objects needed to process Oracle data for Oracle Database Vault. This schema contains the roles, views, accounts, functions, and other database objects that Oracle Database Vault uses. The DVF schema contains public functions to retrieve (at run time) the factor values set in the Oracle Database Vault access control configuration. Oracle Database Vault PL/SQL Interfaces and Packages - Oracle Database Vault provides a collection of PL/SQL interfaces and packages that allow security managers or application developers to configure the access control policy as required. The PL/SQL procedures and functions allow the general database account to operate within the boundaries of access control policy in the context of a given database session. Oracle Database Vault and Oracle Label Security PL/SQL APIs - Oracle Database Vault provides access control capabilities that can be integrated with Oracle Label Security. The Oracle Label Security database option is integrated with Oracle Enterprise Manager Database Control, which enables the security manager to define label security policy and apply it to database objects. Oracle Label Security also provides a collection of PL/SQL packages that can be used by a database application developer to provide label security policy and protections. Oracle Database Vault Reporting and Monitoring Tools - You can generate reports on the various activities that Oracle Database Vault monitors. In addition, you can monitor policy changes, security violation attempts, and database configuration and structural changes.

Working: After installation of the database vault, the first step is to create a realm(Oracle Database Vault Access Control Components) that will contain the database schemas, database objects and roles that are required to be secured. This realm can be further secured by creating the other access control components like Command rules, Factors, Rule sets, Secure application roles.

For example say there is a table called HR_SAL_PAYMENTS under HR realm. A user from the FIN realm will not be able to access the data in another realm which is HR in this case. Another example of security from insider threat is where a DBA tries to grant some access to user, in this case IDMUSRMGT. The following error is encountered while executing the grant statement: grant resource to IDMUSRMGT *ERROR at line 1:ORA-47410: Realm violation for GRANT on UNLIMITED TABLESPACE. Thus, with the help of this, sensitive data is protected from insider threats as well as external threats. Even the privileged users like DBA will not be able to access the schemas in another realm or misuse any privileges while the Database Vault is enabled.

Arpita Ghatak is currently working with Cognizant Technology Solutions for the past 2.5 years. She has earlier worked with Tata Consultancy Services for approximately 4 years first as part of Configuration management team and later as an Oracle Apps DBA.She has been working as a lead DBA in one of the biggest retail chains, 7-Eleven for Cognizant Technology Solutions. She has had the opportunity to be a part of several important milestones like the Data Centre Migration, Exadata Migration and EBS R12 Upgrade. Her major roles and responsibilities include Patching, Cloning, Database Administration and support, Maintenance Activities, Code Migrations, Alert Management and working on Database Vault.

Time Saturday, 8th November 2013
08:00 to 09:00 Registration/check-in
  Room A
 Database Track
Room B
 Database Track
 Room C
 EBS Track
Room D
 EBS Track
Room E
BIGData Track
Room F
Quick Tips Track
Room G
 Developer Track
08:30 to 09:30
What You Need To Know About Oracle Database In-Memory Option

Maria Colgan,
Product Manager (In-memory)  Oracle USA
201587
Fusion Middleware Architecture in EBS 12.2
Varun Sai
201554
Release 12.2.2/12.2.3 New Offerings from Oracle Financial for India
Sumit Dhariwal
What You Need To Know About Oracle Database In-Memory Option (Room A & B)

Maria Colgan,
 Product Manager (In-memory)  Oracle USA
09:30 to 10:00 211226
OPM adds glitter to gold – Our experience with Oracle Apps in implementation for Jewellery Manufacturing
Narayanan Soundararajan
201438
Leverage Endeca extension with iProcurement to increase Operating Profit
AnbuKartikeyan Jagadeeswaran
10:00 to 10:30 211226
Increase ERP adoption with EBS Mobile Apps
Prashant Choube
10:30 to 11:00 Coffee, Networking & Exhibition Time
11:00 to 11:25 201665
Oracle VM : Greatest Platform for Deploying Oracle Database & Applications
PS Janakiram 
201420
Oracle 12c Multi-tenant Database Deep Dive
   Aman Sharma  
201439
Oracle R12 Period Close - Made Easy
Chinmayee Pattanaik
201509
Exadata Migrations With R12 Upgrade And Optimizing Downtime
Venkat Kaparapu
201661
Oracle 12c In-database Analytic's
Hariharaputhran Vaithianathan
201530
Enhanced Data Storage & Compression using Heat Maps and ADO in Oracle 12c
Sai Vinay
201429
The Amazing Oracle Application Express 5.0
Chaitanya Koratamaddi
11:25 to 11:50 201572
Deploy a DR solution and setup stress testing cluster using cascaded standby.
Randhir Kumar
11:50 to 12:00 Interchange
12:00 to 12:25 201432
Oracle 12c Data Guard New Features
Nassyam Basha
201461
Tuning & applying best practices on Data warehousing (VLDB) database
Syed Jaffer Hussian
201481
Oracle Forms Application that Monitors the database Activities
Veeresh Satamraju
201598
Financials for India (OFI) Reconciliation Frame Work and Period End Best Practices
Naveen Vaddadi
201644
What Next for DBAs in the BigData Era
 Satyendra Kumar
201446
Histograms - Pre-12c and now
Anju Garg
201453
SQL Developer Data Modeler 4.0: Applying Design Rules and Transformations to the Database Design
Swarnapriya Shridhar 
12:25 to 12:50 201626
Integrating Oracle E-Business Suite with Identity & Access Management
Atul Kumar 
201525
Online Patch Application Using EBR
Sundaravel Ramasubbu
201454
SQL Developer Data Modeler: Interesting Tips and Tricks
Swarnapriya Shridhar 
12:50 to 02:00 Lunch, Networking & Exhibition Time
02:00 to 02:30 Real time access to real time information - Oracle GoldenGate
Prashanth Rao
Doyensys Capabilities and its reusable Assets
Anand Rajendran
Business Process Automation Experts!!
Vaidyanathan L.K
Sponsor Sponsor Sponsor Sponsor
02:30 to 02:55 201472
Oracle Database Consolidation‚traditional and new methodology
Niraj Mahajan
Abhinivesh Kumar Jain
201478
Oracle RAC 12c: An insight into Oracle Flex ASM and its benefits
Yengula Venkat Ravikumar
201463
Reduce testing effort for Oracle EBS applications with Oracle Flow Builder
Kishor Genikala
211024
Order Management Integration with Approval Management Engine (AME*)
Devaraju Holenarasipur
Krishna Mohan Raghuram
211007
Analyze Oracle Data Directly from Hadoop Compute Engines
Kuassi Mensah 
201450
Adaptive Query Optimization
Anju Garg
201485
Let us not burn Database CPU
Vijay Sehgal
02:55 to 03:20 201648
Role Of Integrator Acquisition System In Endeca
Swathi Dachapalli
201505
Apex Application as Native Mobile Application
Beena VT
03:20 to 03:30 Interchange
03:30 to 03:55 211012
Enterprise Manager 12c Best Practices: Achieve Deep dive Management to Self-Service IT
Gagan Chawla
201629
All about Oracle Performancee
Vivek Sharma
201562
Unleashing Mobile Expenses App with R12.1+
Prasad Vadapalli
201518
Crack The Complexity Of Oracle Applications R12 Workload
Ajith Narayanan
201666
Big Data: Practical and Real Use Cases
Nagaraj Malaiappan
201632
Oracle Privileged Account Manager 11gR2PS2
Teja Nittala
201422
Oracle 12c Key Features for Developers
Hariharaputhran Vaithianathan
03:55 to 04:20 201581
Innovative usage of Accounting Rule for GAAP compliance of the Revenue Deferral process
Arumugaraja Arunachalam
201585
Security Benefits of Implementing Database Vault
Arpita Ghatak
04:20 to 04:50 Coffee, Networking & Exhibition Time
04:50 to 05:15 211008
Develop HA Applications for Planned and Unplanned Database Outages
Kuassi Mensah
201610
Oracle 12c High Availability New Features
Aman Sharma
201607
Customer Enablement - India Localization Service Tax Capabilities
Pavan Raparla
201500
Earnest Money Deposit (EMD) in Oracle Sourcing
Sirisha Padmala
201444
Embedded Analytics: OLAP within Oracle 12c
Phani MV
201484
Cloud 101 for Oracle DBA
Somu Chockalingam
201457
12c SQL and PL/SQL New Features
Sailaja Pasupuleti
05:15 to 05:40 201657
Fastest Database refresh
Suvendu Patra
05:40 to 05:50 Interchange
05:50 to 06:50 Expert Panel - Q & A
Please note allocation to rooms day and sessions times are subject to change

Quick Links

About Us

AIOUG is a non profit organization, provides Oracle technology and database professionals the opportunity to enhance their productivity and influence the quality, usability, and support of Oracle technology. For more details www.aioug.org

Stay Connected on:


Contacts

For general information about the event/conference, including registration, please contact us at:
  This email address is being protected from spambots. You need JavaScript enabled to view it.