Home » RDBMS Server » Security » Data Encryption (11g, 11.2.0.2, windows server 2008)
Data Encryption [message #583112] Fri, 26 April 2013 00:04 Go to next message
ishika_20
Messages: 339
Registered: December 2006
Location: delhi
Senior Member
Dear All,


Our client is having requirements that data should be encrypted through-out the process (from transaction level to backup level).

Requirements are as below -

1) Data should be encrypted and can be access only through application (through front end).
2) Even if pl/sql, sql installed, developer user cannot able to fetch data from database.
3) Even DBA, should not have access to fetch the data from the database.
4) Only assigned DBA, should fetch details from database (provided he/she should have details of database as well as application's user / password).
5) It should be restricted by ip and user details (such as ip of application server with user/password of user).
6) Changes should be purely done from database level only.

I know, you might ask..DBA role always have all the permission to fetch the data.

Can we able to fulfill the requirements?

Need your valuable feedback on this.

Regards,
Ishika
Re: Data Encryption [message #583120 is a reply to message #583112] Fri, 26 April 2013 01:05 Go to previous messageGo to next message
Michel Cadot
Messages: 60012
Registered: March 2007
Location: Nanterre, France, http://...
Senior Member
Account Moderator
1) Application encryption
2) No privileges
3) Database Vault / Application encryption
4) Application encryption, access only through the application / Database Vault
5) Views / VPD
6) Only read privileges through application

Globally the requirements are conflicting; compare 1) and 6) (assuming "from database level only" means "out of the application" as, anyway, modifications are made only at the database level).

Regards
Michel

[Updated on: Fri, 26 April 2013 01:14]

Report message to a moderator

Re: Data Encryption [message #583166 is a reply to message #583120] Fri, 26 April 2013 08:07 Go to previous messageGo to next message
ishika_20
Messages: 339
Registered: December 2006
Location: delhi
Senior Member
Dear Michel,

You are correct. I have to come back to you after having one more round of discussion.

Thanks for your valuable feedback.

Regards,
Ishika
Re: Data Encryption [message #583678 is a reply to message #583166] Thu, 02 May 2013 22:53 Go to previous messageGo to next message
petersew
Messages: 1
Registered: May 2013
Junior Member
Nice post.
Re: Data Encryption [message #588962 is a reply to message #583678] Mon, 01 July 2013 01:53 Go to previous messageGo to next message
heccblack
Messages: 2
Registered: June 2013
Location: shenzhen
Junior Member

nice one
Re: Data Encryption [message #592788 is a reply to message #588962] Mon, 12 August 2013 06:47 Go to previous message
8939513598$
Messages: 103
Registered: July 2013
Location: chennai
Senior Member
Hi Miss.Ishika,I need to know whether you were asking for the role of an Application DBA or Production DBA.

Previous Topic: ORA-06512: at "DVSYS.DBMS_MACADM" line 1740
Next Topic: Password aging without expiry
Goto Forum:
  


Current Time: Sun Dec 21 14:08:56 CST 2014

Total time taken to generate the page: 0.07943 seconds