Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Innovations dbsec-12c-pub

1,434 views

Published on

Published in: Technology, Business
  • Be the first to comment

  • Be the first to like this

Innovations dbsec-12c-pub

  1. 1. Innovations in Database Security Vipin Samar Vice President Database Security, Oracle
  2. 2. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.2 The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
  3. 3. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.3  Changing Security Landscape  Database Governance Model  Strategy for Securing the Database  Security Innovations in Oracle Database 12c AGENDA
  4. 4. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.4 START WITH A PHISHING SCAM COMMAND SERVER ATTACKER i i i i i i i i i i i i i i DOWNLOADED MALWARE PHISHING ATTACK XSS OR SQL INJECTION ATTACK
  5. 5. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.5 ESTABLISH A FOOTHOLD i ii i i ii i i i i i i i ESTABLISH MULTIPLE BACKDOORS DUMPING PASSWORDS DOMAIN CONTROLLER GATHERING DATA
  6. 6. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.6 EXFILTRATE DATA & COVER TRACKS EXFILTRATE DATA VIA STAGING SERVER ANYWHERE IN THE WORLD STOLEN DATA USED IN FOLLOW ON ATTACKS
  7. 7. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.7 From to Adapted from Kuppinger Cole Presentation, March 2013 Basic security is no longer enough Social Engineering Denial of Service Sophisticated Attacks Data Theft Loss to Business Impacts Reputation • Privilege Abuse • Curiosity • Leakage • Accidental deletes • Unauthorized disclosures
  8. 8. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.8 at the CORE is your Email Security OFRECORDS BREACHED FROM DATABASES Vulnerability Management End point Security Network Security Verizon Data Breach Report 2013
  9. 9. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.9 DATABASE GOVERNANCE Copyright © 2013, Oracle and/or its affiliates. All rights reserved.9 PREVENTIVE ADMINISTRATIVE DETECTIVE
  10. 10. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.10 CONTROLS • PIVILEGE CONTROLS • SECURE APP DATA APPS Dev/Test ssn:423-55-3571 dob: 12/01/1987 DATA MASKING DATABASE VAULT DBA CONTROLS ssn:253-21-4321 “Insufficient Privilege” *7#$%!!@!%afb ##<>*$#@34 DATA ENCRYPTION DATA REDACTION ssn:xxx-xx-4321 dob:xx/xx/xxxx
  11. 11. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.11 CONTROLS Built-in Reports Alerts Custom Reports ! Policies AUDIT DATA AUDIT VAULT Firewall Events Database Firewall Custom APP S
  12. 12. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.12 CONTROLS EM Lifecycle Management Configuration Scanning Analyze Privileges Classify Sensitive Data Database Vault 12c
  13. 13. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.13 SECURITY Maximum Security or Critical Data Infrastructure Auditing Activity Monitoring Database Firewall DETECTIVE Data Masking Privileged User Controls Encryption & Redaction PREVENTIVE ADMINISTRATIVE Sensitive Data Discovery Configuration Management Privilege Analysis Activity Monitoring
  14. 14. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.14 CREATE A • Take a risk-based strategic approach • Implement database governance • Let Oracle help customers with an assessment
  15. 15. Complimentary eBook Register Now www.mhprofessional.com/dbsec Use Code: db12c
  16. 16. Copyright © 2013, Oracle and/or its affiliates. All rights reserved.16

×