Path: newssvr20.news.prodigy.com!newsmst01.news.prodigy.com!prodigy.com!rip!news.webusenet.com!peer01.cox.net!cox.net!kibo.news.demon.net!news.demon.co.uk!demon!peterfinnigan.demon.co.uk!pete From: Pete Finnigan Newsgroups: comp.databases.oracle.server Subject: Re: Label Security: Maybe I missed another naming but ... Date: Tue, 9 Sep 2003 09:57:20 +0100 Organization: www.petefinnigan.com Lines: 19 Message-ID: References: <1062992833.725047@yasure> <3f5c0a13$0$10355$afc38c87@news.optusnet.com.au> NNTP-Posting-Host: peterfinnigan.demon.co.uk Mime-Version: 1.0 X-Trace: news.demon.co.uk 1063104822 24934 212.228.17.70 (9 Sep 2003 10:53:42 GMT) X-Complaints-To: abuse@demon.net NNTP-Posting-Date: Tue, 9 Sep 2003 10:53:42 +0000 (UTC) X-Newsreader: Turnpike Integrated Version 5.01 S Xref: newssvr20.news.prodigy.com comp.databases.oracle.server:242680 Hi Daniel As far as I understand it label security is now what trusted Oracle used to be. It adds, well "labels" to each row of data that you specify and these labels have "levels" of access like "secret", "top secret" etc. It was intended for the intelligence agencies (Oracles original first clients) so that only those persons authorised to see certain data could see that data and not data protected at a higher security level. As far as I know its now implemented using RLS as a set of procedures sat on top of RLS to implement the labels. cheers Pete -- Pete Finnigan email:pete@petefinnigan.com Web site: http://www.petefinnigan.com - Oracle security audit specialists Book:Oracle security step-by-step Guide - see http://store.sans.org for details.