Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> DBMS_RLS and Security

DBMS_RLS and Security

From: William Wagman <wjwagman_at_ucdavis.edu>
Date: Tue, 1 May 2007 16:15:24 -0700
Message-ID: <FE043305B38A0F448F3924429D650C2A02570C00@VEXBE2.ex.ad3.ucdavis.edu> 





Greetings,



One of my users sent me this URL for a paper on improving security,
http://www.oracle.com/technology/pub/articles/jucan_security.html. The
writer presents a technique for hiding columns using DBMS_RL to create
policies to hide data. Apparently one can even hide data from a user
with full DBA access. I had a conversation with one of my co-workers who
had just attended an Oracle taught security class and she reported that
there are numerous examples of users losing data when attenpting to do
this. Apparently the class instructor also did not have real good
feelings about this technique as well. It apparently also takes
advantage of Oracle Application server's security which makes it appear
that application server is required in order to utilize this
methodology. Unfortunately I don't have a good enough understanding of
the process to give a concise explanation. I am interested in knowing if
others are familiar with this technique, have used it and what your
experiences were.



Thanks.



Bill Wagman


Univ. of California at Davis


IET Campus Data Center


wjwagman_at_ucdavis.edu


(530) 754-6208

--
http://www.freelists.org/webpage/oracle-l


Received on Tue May 01 2007 - 18:15:24 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US