Book Image

Oracle Database 12c Security Cookbook

By : Zoran Pavlovic, Maja Veselica
Book Image

Oracle Database 12c Security Cookbook

By: Zoran Pavlovic, Maja Veselica

Overview of this book

Businesses around the world are paying much greater attention toward database security than they ever have before. Not only does the current regulatory environment require tight security, particularly when dealing with sensitive and personal data, data is also arguably a company’s most valuable asset - why wouldn’t you want to protect it in a secure and reliable database? Oracle Database lets you do exactly that. It’s why it is one of the world’s leading databases – with a rich portfolio of features to protect data from contemporary vulnerabilities, it’s the go-to database for many organizations. Oracle Database 12c Security Cookbook helps DBAs, developers, and architects to better understand database security challenges. Let it guide you through the process of implementing appropriate security mechanisms, helping you to ensure you are taking proactive steps to keep your data safe. Featuring solutions for common security problems in the new Oracle Database 12c, with this book you can be confident about securing your database from a range of different threats and problems.
Table of Contents (18 chapters)
Oracle Database 12c Security Cookbook
Credits
About the Authors
About the Reviewers
www.PacktPub.com
Preface

Enabling, disabling, and dropping policy


In this recipe, you'll learn to enable, disable, and drop transparent sensitive data protection policies.

Getting ready

To complete this recipe, you'll need two existing users-one to manage TSDP policies and the other to view sensitive data.

How to do it...

  1. Connect to the database (for example, pdb1) as a user who has the SELECT privilege on the HR.EMPLOYEES table and the CHALLENGEZORAN.T1 table or the SELECT ANY TABLE privilege (for example, maja).

    $ sqlplus maja@pdb1
    
  2. View sensitive data by executing the following two queries:

    SELECT EMAIL FROM HR.EMPLOYEES FETCH FIRST 10 ROWS ONLY;
    

    Figure 9 - Before enabling the policy

    SELECT EMAIL_ADDRESS FROM CHALLENGEZORAN.T1;
    

    Figure 10 - Before enabling the policy

  3. Connect to the database (for example, pdb1) as a user who can manage TSDP policies (for example, c##zoran). Enable the TSDP policy:

  4. Repeat step 2 as user maja.

    Figure 12 - Sensitive data is protected

  5. Result of the second query is shown in Figure 13:

    Figure...