Re: Oracle Advanced Security

From: David Robillard <david.robillard_at_gmail.com>
Date: Mon, 25 Jun 2012 07:12:30 -0400
Message-ID: <CADH15GjKPi4JpUwHZMW57MfRSSORDsTAMHASzaz8ujdsey8Jng_at_mail.gmail.com>

> use a hsm and your keys dont end up lost, unless the hsm eats them.
>�http://www.oracle.com/technetwork/database/security/hsms-for-oracle-tde-404784.html

Excellent piece of advise.

We used HSMs from SafeNet to store the keys of our PKI's CA. These devices are not cheap, but if your organization is ISO 27 001 or is expected to comply with several security regulations in your country, then they are quite inevitable. Make sure you have two of them at the very least. Because you will need one to test your procedures. And those procedures can be quite a challenge to put together. Well, actually I think the amount of paper work related to these systems might even be bigger then the actual work required to get them up and running!

Have fun,

DA+

--
http://www.freelists.org/webpage/oracle-l

Received on Mon Jun 25 2012 - 06:12:30 CDT

This message: [ Message body ]
Next message: Howard Latham: "Re: Bank Databases"
Previous message: Matthew Zito: "Re: Bank Databases"
Maybe in reply to: Sciuto, Mary: "Oracle Advanced Security"
Next in thread: Jeff Chirco: "RE: Oracle Advanced Security"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message