Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Restricting access to DBA

Re: Restricting access to DBA

From: Rick Wessman <Rick.Wessman_at_oracle.com>
Date: 24 Sep 2001 08:36:12 -0400
Message-ID: <soc8zf43gw3.fsf@rwessman-pc.us.oracle.com> 





In short, you can't.



I don't want to get to a discussion about whether you should be able to trust
your DBA in the first place, but you can encrypt your tables using the
DBMS_OBFUSCATION_TOOLKIT package. Just make sure that the entire encryption
key is not available to the DBA. Also, you need to have schemes for key
recovery and for re-keying.



There is a white paper on technet.oracle.com that discusses a possible key
generation method.


                                        Rick





chandrut_at_hotmail.com (Chandrasekar Tiruvuru) writes:



> Hi,

> 

> How to restrict access to the DBAs for some tables containing

> confidential information? The version of Oracle that my company runs

> is 8.1.7/8.1.6 running on Aix 4.3.3

> 

> Thanks in advance

> 

> Chandru



-- 
                                Rick Wessman
                                Security Assurance Group
                                Oracle Corporation
                                Rick.Wessman_at_oracle.com

     The opinions expressed above are mine and do not necessarily reflect
                         those of Oracle Corporation.


Received on Mon Sep 24 2001 - 07:36:12 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US