Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.misc -> Re: [Q] Security Paranoia....
All,
Thanks for the help. Just to comment on the common "You have to trust the DBA" thread. Being a sys admin myself I am well aware that you have to trust somebody. However the reality of my situation is this:
So I take your point that it appears as if I am being totally paranoid, but I believe I have a valid foundation for this. Furthermore are you saying that as an account holder at a bank I should be totally comfortable that a DBA somewhere can pull up my account history with impunity? After all there is no need to encrypt the data because we trust that DBA. ;-)
On Wed, 29 Aug 2001 06:24:15 GMT, donovan_at_namsys.com.au (Donovan J. Edye) wrote:
>G'Day,
>
>I am the database owner of a database called MyDB but not the database
>adminisitrator for the oracle server. The information that is
>contained in MyDB is sensitive needs to be secured from prying eyes.
>The only access to the database would be via a set of stored
>procedures.
>
>So is it possible to:
>
>- Encrypt the data in the database
>- Still write SQL such as SELECT * FROM MyTable WHERE AField = 'blah'
>within the stored procedures
>- Encrypt the stored procedures
>
>In short I don't want the dba or any other super user to be able to
>interact or see the data in the db in any way (tables, stored procs
>etc) and only want external users to access the data from a stored
>procedure interface. Users would be granted access to the stored
>procedure interface via a specified user name and password. The only
>things they would be able to see would be the stored procedures and
>execute them, but not the content of the stored procedures. If this is
>achievable then are there any other additional considerations should
>this database participate in replication?
>
>TIA
>
>-- Donovan
>donovan_at_namsys.com.au
Received on Thu Aug 30 2001 - 19:07:09 CDT