Re: Protecting the encryption key from the DBA

From: Sybrand Bakker <postbus_at_sybrandb.demon.nl>
Date: Mon, 18 Jul 2005 21:01:36 +0200
Message-ID: <01vnd19c4oo3eeb170pqnhi8kmggibdptk@4ax.com>

On 18 Jul 2005 10:15:31 -0700, "Pratap" <pratap_fin_at_rediffmail.com> wrote:

>How can we protect the encryption key from the DBA

If you don't trust the DBA, fire him.
No database can be and should be protected from a DBA. If you want be sure of protection, swap Oracle for a toy like sqlserver, put the system in a server room, make sure the password of sa is sa, and throw away the key of that server room.

--
Sybrand Bakker, Senior Oracle DBA

Received on Mon Jul 18 2005 - 14:01:36 CDT

This message: [ Message body ]
Next message: cnsjs: "Rookie questions..."
Previous message: Madhu R. Vajrala: "Re: RMAN: ksfd: async disk IO"
In reply to: Pratap: "Protecting the encryption key from the DBA"
Next in thread: DA Morgan: "Re: Protecting the encryption key from the DBA"
Reply: DA Morgan: "Re: Protecting the encryption key from the DBA"
Reply: Paul: "Re: Protecting the encryption key from the DBA"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message

HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US