Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Acessing data - security versus ease of use

Re: Acessing data - security versus ease of use

From: Pete Finnigan <plsql_at_petefinnigan.com>
Date: Wed, 3 Dec 2003 16:11:00 +0000
Message-ID: <B+gQHwAUsgz$Qx33@peterfinnigan.demon.co.uk> 





Hi 



Whatever your access solution over the net and through firewalls you
should consider protection at the database level. least privilege
principle springs to mind. Whatever way your users gain access they
should not be allowed to see more data than through the regular
connection method (application?). You could consider row level security
also. I have just written two papers on row level security see
http://www.petefinnigan.com/orasec.htm - There are also many other
security papers on there for Oracle that might interest you.



hth



kind regards



Pete

-- 
Pete Finnigan
email:pete_at_petefinnigan.com
Web site: http://www.petefinnigan.com - Oracle security audit specialists
Book:Oracle security step-by-step Guide - see http://store.sans.org for details.


Received on Wed Dec 03 2003 - 10:11:00 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US