Oracle Locks DBAs in the Vault

By Lisa Vaas Print this article Print

Oracle's new Database Vault technology restricts data access rights of even powerful users, while its new encryption technology, Secure Backup, encrypts data to tape.

Oracle's new Database Vault technology restricts data access rights of even powerful users, while its new encryption technology, Secure Backup, encrypts data to tape.

Oracle introduced two new security tools on April 25: Database Vault, which restricts data access rights of even powerful users such as database administrators, and Secure Backup encryption technology, which ensures that even tapes that get lost or misplaced won't be readable by the wrong set of eyes.

Database Vault is designed to meet organizations' need to comply with regulatory and privacy mandates and related separation-of-duty mandates that require more than one person to complete a sensitive task. It's also designed to protect businesses against security threats from insiders.

Mark Townsend, Oracle's senior director of product management for the database, in Redwood Shores, Calif., said that customers are increasingly looking to be able to prove to auditors that they're on top of controlling data privacy.

"Databases hold [sensitive data such as] end-of-quarter results, etc.," Townsend said. "Companies need to be able to prove DBAs haven't had access to that information."

Database Vault has security controls that allow for incremental restrictions on data access. The product establishes realms that can encapsulate an application or a set of database objects inside a protection zone. Rules can also be set to restrict operations based on business-specific factors such as a particular database, a machine, IP addresses, time of day or authentication modes.

Click here to read about Oracle's recently released secure enterprise search technology.

Thus, the software can be set up to prevent a DBA from changing the database from outside the corporate intranet or after normal working hours, for example.

"This is automated prevention where you can come into a large, existing database and say, 'This data over here, we want to make sure DBAs aren't seeing end-of-quarter results,'" Townsend said.

Read the full story on eWEEK.com: Oracle Locks DBAs in the Vault

This article was originally published on 2006-04-26
Lisa Vaas is News Editor/Operations for eWEEK.com and also serves as editor of the Database topic center. Since 1995, she has also been a Webcast news show anchorperson and a reporter covering the IT industry. She has focused on customer relationship management technology, IT salaries and careers, effects of the H1-B visa on the technology workforce, wireless technology, security, and, most recently, databases and the technologies that touch upon them. Her articles have appeared in eWEEK's print edition, on eWEEK.com, and in the startup IT magazine PC Connection. Prior to becoming a journalist, Vaas experienced an array of eye-opening careers, including driving a cab in Boston, photographing cranky babies in shopping malls, selling cameras, typography and computer training. She stopped a hair short of finishing an M.A. in English at the University of Massachusetts in Boston. She earned a B.S. in Communications from Emerson College. She runs two open-mic reading series in Boston and currently keeps bees in her home in Mashpee, Mass.
eWeek eWeek

Have the latest technology news and resources emailed to you everyday.