Effective Oracle Database 10g Security by Design
Oracle security expert David Knox explains how to design and develop an integrated, secure Oracle environment.\ “In my experience in the security world, including 32 years at the Central Intelligence Agency, I’ve not found anyone with more experience in the theory and practice of protecting your data than David Knox.” —Dave Carey, former Executive Director of the CIA
Search in google:
Protect Your Mission-Critical Data with Tips and Tricks from an Oracle Security InsiderOracle expert David Knox has written the most practical, up-to-date book on Oracle Database 10g security available. With an emphasis on real-world problems and detailed solutions, Effective Oracle Database 10g Security by Design provides all the information you need to develop and deploy secure database applications. The entire security cycle is covered—from identification and authentication to fine-grained access control and encryption to effective auditing techniques. The material is presented with comprehensive yet easy-to-understand examples that show how to use all the security technologies in a complementary way. Assess database vulnerabilities and develop effective security policies Preserve user identity with in-depth analyses of JDBC connection pools, proxy authentication, and client identifiers Manage database users from a central directory without sacrificing security Lock down database access using secure application roles Leverage application and database security within Oracle’s Identity Management infrastructure Validate user privileges by using simple views and scripts Protect individual data elements by using the new Oracle DBMS_CRYPTO package Exploit database views to provide row-level and column-level fine-grained access controls Enforce need-to-know access and data privacy with Virtual Private Database and Oracle Label Security Ensure user accountability with Oracle fine-grained AuditingDavid Knox is the chief engineer for Oracle’s Information Assurance Center and is one of the premier educators worldwide on Oracle security. While at Oracle he has worked on wide-ranging security programs for various customers including the U.S. Department of Defense, intelligence agencies, financial services companies, and healthcare organizations.
1General security best practices32Securing the database213Understanding identification and authentication554Connection pools and proxy authentication695Identity management and enterprise users996Identification and authentication for web applications1217Privileges and roles1538Effective auditing for accountability2019Application contexts for security and performance24710Implementing fine-grained access controls with views27711Row-level security with virtual private database29312Oracle label security33713Database encryption401App. ASetting up the security manager453App. BDATAöCRYPTO package457App. CDBMSöCRYPTO performance test results479
![SQL Queries for Mere Mortals: A Hands-on Guide to Data Manipulation in SQL [For Mere Mortals Series]](/application/data/covers/44/31/9780321444431.jpg "SQL Queries for Mere Mortals: A Hands-on Guide to Data Manipulation in SQL [For Mere Mortals Series]")
