Oracle technology day 19.5.2010. best practices for upgrade to 11g r2Oracle Hrvatska
Here are the key steps to take with SQL Plan Management:
1. Enable SQL plan management before the upgrade:
ALTER SESSION SET "_sql_plan_management"=true;
2. After upgrade, any new or changed SQL will get new plans.
3. For unchanged SQL, existing plans will be retained and used.
4. Monitor performance and check plans. If issues arise, use SQL plan baselines to lock preferred plans.
5. SQL plan baselines prevent regression and provide stability as the database evolves.
So in summary, SQL plan management allows retaining existing execution plans for unchanged SQL after an upgrade, while still allowing new or changed SQL to receive new plans tailored for the
Presentation upgrade, migrate & consolidate to oracle database 12c &...solarisyougood
This document provides an overview of upgrading, migrating, and consolidating to Oracle Database 12c and 11gR2. It discusses new features in Oracle 12c such as automatic data optimization, extreme availability enhancements like Active Data Guard Far Sync, and security features. The document also covers preparing for an upgrade, migration cases, fallback strategies, performance management, and multitenant architecture concepts.
Welcome and introduction to the 2nd innovation camp in Network of Nordic Public Libraries, 19 September 2011 in Stockholm. 55 participants from the libraries in Oslo, Helsinki, Stockholm, Reykjavik, Akureyri and Aarhus co-create ideas and concept for the future of public libraries in the Nordic Societies
Este documento presenta la información sobre un taller para crear y administrar un curso en la plataforma OpenEducation. El objetivo del taller es conocer esta plataforma MOOC y cómo funciona. El taller explica los pasos para crear un curso, incluyendo importar un paquete, revisar enlaces y contenido, inscribir instructores y estudiantes, y probar herramientas. Los resultados de aprendizaje incluyen crear un curso utilizando conceptos de diseño instruccional y explorar herramientas como inscripción,
Conversie: Het gaat om de knikkers. Tijdens de presentatie op de Webwinkel Vakdagen 2015 was dit het centrale thema.
Een aantal zaken die aan bod kwamen:
1] Conversie optimalisatie gaat verder dan conversiepercentage (CRO)
2] Universele waarheden bestaan niet, best practices wel
3] Het begint bij 'gerichte bezoekers'
4] Manipuhelpen; de 6 invloedsfactoren van Cialdini
5] A/B testen: alleen bij 'serieus volume'
Organiseer je zelf een event/seminar/... en ben je op zoek naar een spreker op het gebied van online marketing? Neem dan gerust contact met me op via wieger.waardenburg@xpertmarketing.nl of via Twitter @wwaardenburg
Las estudiantes Nayibe y Edie ingresaron a la página principal de Google y accedieron a la opción "Más-Todavía más" para buscar información sobre "Alertas". Llenaron los datos requeridos para crear una cuenta de Alertas de Google y luego crearon una alerta sobre ese tema, por lo que empezaron a recibir noticias relacionadas en su correo electrónico.
Oracle technology day 19.5.2010. best practices for upgrade to 11g r2Oracle Hrvatska
Here are the key steps to take with SQL Plan Management:
1. Enable SQL plan management before the upgrade:
ALTER SESSION SET "_sql_plan_management"=true;
2. After upgrade, any new or changed SQL will get new plans.
3. For unchanged SQL, existing plans will be retained and used.
4. Monitor performance and check plans. If issues arise, use SQL plan baselines to lock preferred plans.
5. SQL plan baselines prevent regression and provide stability as the database evolves.
So in summary, SQL plan management allows retaining existing execution plans for unchanged SQL after an upgrade, while still allowing new or changed SQL to receive new plans tailored for the
Presentation upgrade, migrate & consolidate to oracle database 12c &...solarisyougood
This document provides an overview of upgrading, migrating, and consolidating to Oracle Database 12c and 11gR2. It discusses new features in Oracle 12c such as automatic data optimization, extreme availability enhancements like Active Data Guard Far Sync, and security features. The document also covers preparing for an upgrade, migration cases, fallback strategies, performance management, and multitenant architecture concepts.
Welcome and introduction to the 2nd innovation camp in Network of Nordic Public Libraries, 19 September 2011 in Stockholm. 55 participants from the libraries in Oslo, Helsinki, Stockholm, Reykjavik, Akureyri and Aarhus co-create ideas and concept for the future of public libraries in the Nordic Societies
Este documento presenta la información sobre un taller para crear y administrar un curso en la plataforma OpenEducation. El objetivo del taller es conocer esta plataforma MOOC y cómo funciona. El taller explica los pasos para crear un curso, incluyendo importar un paquete, revisar enlaces y contenido, inscribir instructores y estudiantes, y probar herramientas. Los resultados de aprendizaje incluyen crear un curso utilizando conceptos de diseño instruccional y explorar herramientas como inscripción,
Conversie: Het gaat om de knikkers. Tijdens de presentatie op de Webwinkel Vakdagen 2015 was dit het centrale thema.
Een aantal zaken die aan bod kwamen:
1] Conversie optimalisatie gaat verder dan conversiepercentage (CRO)
2] Universele waarheden bestaan niet, best practices wel
3] Het begint bij 'gerichte bezoekers'
4] Manipuhelpen; de 6 invloedsfactoren van Cialdini
5] A/B testen: alleen bij 'serieus volume'
Organiseer je zelf een event/seminar/... en ben je op zoek naar een spreker op het gebied van online marketing? Neem dan gerust contact met me op via wieger.waardenburg@xpertmarketing.nl of via Twitter @wwaardenburg
Las estudiantes Nayibe y Edie ingresaron a la página principal de Google y accedieron a la opción "Más-Todavía más" para buscar información sobre "Alertas". Llenaron los datos requeridos para crear una cuenta de Alertas de Google y luego crearon una alerta sobre ese tema, por lo que empezaron a recibir noticias relacionadas en su correo electrónico.
The document discusses various media technologies used to research and plan a period drama trailer, including YouTube and Apple Trailers to view existing trailers and conventions, Photobucket to plan shots from a location, and Google, BFI, Film Education and BBFC to research the genre and classification. Animatics was also mentioned as a program that could have helped plan the trailer more through an animated storyboard, but it was not used due to time restraints and lack of knowledge.
This document discusses the potential for mobile health (mhealth) technologies to help address healthcare challenges in remote areas with limited resources. It provides examples of how SMS and other mobile technologies have been used in a pilot project in Kenya to:
1) Provide patient follow-up, adherence tracking, and reporting of new symptoms to improve information sharing and care. This saved fuel costs and staff time.
2) Enable remote care requests, drug information, and point-of-care support to enhance patient care. This led to more patients enrolling in health programs.
3) Help manage drug and supply stockouts, support group coordination, training, and CHW communication to improve healthcare logistics and operations.
Content Marketing en Content Management is hot. Maar hoe ga je dat vorm geven? En hoe zorg je ervoor dat content je helpt naar betere zoekmachine posities?
Het werd verteld tijdens de bijeenkomst van CJB Midden-Holland op 11 september 2013.
De belangrijkste boodschap? Zoekmachine MARKETING heet niet voor niets zo. Pak het ook echt aan als marketing, speel in op de zoektocht van je potentiële klant en laat dat het uitgangspunt zijn in het verbeteren van je vindbaarheid (SEO).
Scoren met content: dat kan zeker, als je niet alleen maar vanuit je eigen perspectief denkt. Eigenlijk is het een vorm van pull-marketing en als je je dat goed realiseert, op die manier handelt en zo je content afstemt op je doelgroep... dan moet het haast wel goed komen.
Een aantal praktische tips, verpakt in een presentatie van ca. een half uurtje.
Heb je een spreker nodig voor jouw event? Kijk dan zeker eens op http://xpertmarketing.nl/spreker-online-marketing/ en neem contact met me op.
Global Health Action - Haiti
To contribute to the reduction of maternal and infant mortality in the Petit Goave Region of Haiti.
Mia Forman, MCHIP
CORE Group Spring Meeting, April 29, 2010
OpenSolaris is an open source operating system based on Sun Microsystems' Solaris. It includes code from Solaris and UNIX System V as well as free software. Sun contributed to OpenSolaris and planned to base future versions of Solaris on the OpenSolaris project before being acquired by Oracle. OpenSolaris can be installed, updated, and managed through its package system and is offered in both development and production releases.
Barrier Analysis Survey: Working Group Participationjehill3
Barrier Analysis Survey: Working Group Participation
Mitzi Hanold, Food for the Hungry
SBC Working Group Showcase
CORE Group Spring Meeting, April 29, 2010
This document outlines a capstone project for students to learn about DNA technology and its application to forensic science. Students will first extract DNA and complete gel electrophoresis to solve a mock murder case. They will then research genetically modified foods and debate whether they are safe to eat. The project incorporates collaboration, higher-order thinking, and real-world applications of DNA technology to authentically simulate the work of forensic scientists and molecular biologists. Assessment includes performance on labs and an expert-evaluated debate on genetically modified foods.
Constructivism is a learning theory that emphasizes active learning through hands-on experiences and collaboration. Key contributors include Piaget, Bruner, Vygotsky, and Dewey. According to constructivism, learning occurs as students actively construct new knowledge based on their previous knowledge and experiences. In the classroom, teachers should facilitate hands-on projects, problem solving activities, and discussions to help students build upon what they already know. Technology can also be incorporated to enhance constructivist learning through virtual experiences, educational videos, and online collaboration.
Este decreto modifica el régimen de zonas francas en Colombia. Define términos clave como usuario operador, usuario industrial, zona franca permanente y transitoria. Establece que las zonas francas pueden ser permanentes, permanentes especiales o transitorias. También define los criterios de interpretación y los tipos de usuarios de zonas francas, incluyendo usuarios operadores, industriales de bienes, industriales de servicios y comerciales.
Topical bevacizumab in combination with flurbiprofen eye drops and punctal occlusion for 4 weeks after pterygium excision and conjunctival autograft showed no recurrence of pterygium in any of the 17 patients over a 2 year follow up period. No patients experienced any ocular or systemic side effects from the topical bevacizumab treatment regimen. This prospective case series suggests that topical bevacizumab may be a safe and effective adjuvant therapy to prevent recurrence of primary pterygium after surgery. Larger controlled studies are still needed.
The document discusses various media technologies used to research and plan a period drama trailer, including YouTube and Apple Trailers to view existing trailers and conventions, Photobucket to plan shots from a location, and Google, BFI, Film Education and BBFC to research the genre and classification. Animatics was also mentioned as a program that could have helped plan the trailer more through an animated storyboard, but it was not used due to time restraints and lack of knowledge.
This document discusses the potential for mobile health (mhealth) technologies to help address healthcare challenges in remote areas with limited resources. It provides examples of how SMS and other mobile technologies have been used in a pilot project in Kenya to:
1) Provide patient follow-up, adherence tracking, and reporting of new symptoms to improve information sharing and care. This saved fuel costs and staff time.
2) Enable remote care requests, drug information, and point-of-care support to enhance patient care. This led to more patients enrolling in health programs.
3) Help manage drug and supply stockouts, support group coordination, training, and CHW communication to improve healthcare logistics and operations.
Content Marketing en Content Management is hot. Maar hoe ga je dat vorm geven? En hoe zorg je ervoor dat content je helpt naar betere zoekmachine posities?
Het werd verteld tijdens de bijeenkomst van CJB Midden-Holland op 11 september 2013.
De belangrijkste boodschap? Zoekmachine MARKETING heet niet voor niets zo. Pak het ook echt aan als marketing, speel in op de zoektocht van je potentiële klant en laat dat het uitgangspunt zijn in het verbeteren van je vindbaarheid (SEO).
Scoren met content: dat kan zeker, als je niet alleen maar vanuit je eigen perspectief denkt. Eigenlijk is het een vorm van pull-marketing en als je je dat goed realiseert, op die manier handelt en zo je content afstemt op je doelgroep... dan moet het haast wel goed komen.
Een aantal praktische tips, verpakt in een presentatie van ca. een half uurtje.
Heb je een spreker nodig voor jouw event? Kijk dan zeker eens op http://xpertmarketing.nl/spreker-online-marketing/ en neem contact met me op.
Global Health Action - Haiti
To contribute to the reduction of maternal and infant mortality in the Petit Goave Region of Haiti.
Mia Forman, MCHIP
CORE Group Spring Meeting, April 29, 2010
OpenSolaris is an open source operating system based on Sun Microsystems' Solaris. It includes code from Solaris and UNIX System V as well as free software. Sun contributed to OpenSolaris and planned to base future versions of Solaris on the OpenSolaris project before being acquired by Oracle. OpenSolaris can be installed, updated, and managed through its package system and is offered in both development and production releases.
Barrier Analysis Survey: Working Group Participationjehill3
Barrier Analysis Survey: Working Group Participation
Mitzi Hanold, Food for the Hungry
SBC Working Group Showcase
CORE Group Spring Meeting, April 29, 2010
This document outlines a capstone project for students to learn about DNA technology and its application to forensic science. Students will first extract DNA and complete gel electrophoresis to solve a mock murder case. They will then research genetically modified foods and debate whether they are safe to eat. The project incorporates collaboration, higher-order thinking, and real-world applications of DNA technology to authentically simulate the work of forensic scientists and molecular biologists. Assessment includes performance on labs and an expert-evaluated debate on genetically modified foods.
Constructivism is a learning theory that emphasizes active learning through hands-on experiences and collaboration. Key contributors include Piaget, Bruner, Vygotsky, and Dewey. According to constructivism, learning occurs as students actively construct new knowledge based on their previous knowledge and experiences. In the classroom, teachers should facilitate hands-on projects, problem solving activities, and discussions to help students build upon what they already know. Technology can also be incorporated to enhance constructivist learning through virtual experiences, educational videos, and online collaboration.
Este decreto modifica el régimen de zonas francas en Colombia. Define términos clave como usuario operador, usuario industrial, zona franca permanente y transitoria. Establece que las zonas francas pueden ser permanentes, permanentes especiales o transitorias. También define los criterios de interpretación y los tipos de usuarios de zonas francas, incluyendo usuarios operadores, industriales de bienes, industriales de servicios y comerciales.
Topical bevacizumab in combination with flurbiprofen eye drops and punctal occlusion for 4 weeks after pterygium excision and conjunctival autograft showed no recurrence of pterygium in any of the 17 patients over a 2 year follow up period. No patients experienced any ocular or systemic side effects from the topical bevacizumab treatment regimen. This prospective case series suggests that topical bevacizumab may be a safe and effective adjuvant therapy to prevent recurrence of primary pterygium after surgery. Larger controlled studies are still needed.
Analiza softverske imovine koju koristite - prvi korak migraciji u CloudTomislav Lulic
Često se događa da tvrtka odluči prijeći na servise u Cloudu (Azure, Office 365 itd.), nabavi licence, pokrene servise i nakon toga pokušaju migraciju svojih postojećih servisa u Cloud. I tu zapne! Zašto? Zbog pripreme. Naime, dobra analiza što koristite unutar tvrtke i vođenje inventara aplikacija koje koristite, jednako je važno, kao i materijalni inventar (ormari, stolice itd.). Posebno danas kada se pristupa dokumentima i aplikacijama praktički sa svih uređaja koje posjedujete. Predavanje bi ukazalo na neke zamke kao i načine analize da bi migracija u Cloud bila bezbolnija, ili bi zbog troškova odustali od nje. Da li je moguće migrirati cjelokupno poslovanje u Cloud, koje servise odabrati, kako licencirati? Demonstriralo bi se na nekoliko primjera na što treba paziti i koje alate koristiti u analizi. Software Asset Management ili upravljanje softverskom imovinom tu vam može pomoći.
U Srcu razvijamo, održavamo i dajemo podršku za veliki broj sustava, gdje se svaki sastoji od niza servisa i aplikacija, broj aktivnih korisnika ide i preko 150.000 (uglavnom iz akademske zajednice), a ti sustavi rade na raznim platformama (Java, .Net, PHP, ...). Potrebe i želje korisnika za doradama, nadogradnjama i proširenjima sustava konstantno rastu kako rastu i sami sustavi. Kako bi i dalje uspješno pratili potrebe korisnika smatramo da nam treba Platform as a service (PaaS) kao temelj za daljnji razvoj i održavanje naših sustava. U prezentaciji je prezentirano u kojim segmentima rada nam PaaS može pomoći.
Log, or historical storage of system events, has always occupied central place in architectures of all traditional databases and analytical systems, but nowadays it serves more and more as backbone of modern distributed systems. Some of architectures and tools which use this type of data storage will be presented – Kafka message broker, Datomic database, CQRS/Event-sourcing architecture …
MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim ure...Tomislav Lulic
Dolaskom pametnih telefona, otvorio se novi segment zaštite poslovanja tvrtke: Upravljanje mobilnim uređajima. Snaga i kapacitet mobilnih uređaja (kao i koncept BYOD), omogućuje pohranu velike količine podataka na uređaj, a samim time otvoren je prostor za nekontrolirani pristup i korištenje podataka prilikom gubitka ili krađe. Kako pravilno odabrati model upravljanja mobilnim uređajima?
Auditing of business applications is very important especially in online banking because we are working with monetary transactions. Privredna banka Zagreb had an requirement
to implement a flexible system to audit user activity in our online banking for SME clients especialy since are authorization model was rather complex, for that we decided to use api with Java filters and intereceptors on are web application and for storage system we choosed MongoDB NoSQL database. In this presentation we are going to show you how we did it.
Auditing of business applications is very important especially in online banking because we are working with monetary transactions. Privredna banka Zagreb had an requirement
to implement a flexible system to audit user activity in our online banking for SME clients especialy since are authorization model was rather complex, for that we decided to use api with Java filters and intereceptors on are web application and for storage system we choosed MongoDB NoSQL database. In this presentation we are going to show you how we did it.
Sam pojam "skladište podataka" (engl. Data Warehouse) podrazumijeva zbirku podataka izoliranih iz operativnih baza i spremljenih u posebne baze odnosno skladišta podataka.
Glavna karakteristika koja određuje skladište podataka odnosi se na njegovu svrhu
Prema definiciji koju je postavio William H. Inmon, skladište podataka predstavlja subjektni usmjeren (subject-oriented), integrirani (integrated), vezan na vrijeme (time-variant) i sadržajno nepromjenjiv (non-volatile) skup podataka, a krajnji cilj mu je pomoć menadžmentu pri donošenju odluka.
Konferencija Javantura Zagreb 2014 by HUJAK
Alfresco – Neo4j integracija – nova vrsta CMS aplikacija by Damir Murat
Graph baze imaju mnoge primjene, a jedna od njih je obogaćivanje i novi način pretraživanja i korištenja postojećih podataka. Ako prateći tu ideju povežemo CMS sustav Alfresco (www.alfresco.com) i graph bazu podataka Neo4j (www.neo4j.org), otvara se mogućnost kreiranja nove vrste CMS aplikacija. Dodamo li u mješavinu još i tehnologije kao što su Ext JS, D3.js i Grails, rezultat može biti vrlo atraktivan za krajnjeg korisnika.
Similar to Db security vaba information age 2010 v6.ppt [compatibility m (20)
Oracle technology day 19.5.2010. introduction to the web logic diagnostics f...Oracle Hrvatska
The WebLogic Diagnostics Framework (WLDF) provides a coordinated set of monitoring and diagnostic services that run within the WebLogic Server process. It allows the collection, analysis, archiving, and access of diagnostic data generated by running servers and applications. WLDF components like instrumentation, harvesting, and watching are configured using MBeans and persisted in XML files. The diagnostic system enables insights into runtime performance to isolate and diagnose faults.
Oracle services day 12.05.2010. marin servicesOracle Hrvatska
Iron Man 2 agenda outlines the schedule for an Oracle Services day event, including openings by Marin Tadic and Henrik Wegge-Berg, presentations on Oracle Services strategies and making the most of Oracle Services, a break, presentations on Oracle Consulting and Oracle University, and concluding with a presentation from Privredna Banka Zagreb on their experiences using Oracle services.
Oracle services day 12.05.2010. customer day services strategy ou.Oracle Hrvatska
Oracle University provides training services to help customers save money by making a smoother transition to new Oracle technologies. Through comprehensive training, customers can realize quicker returns, reduce costs, and minimize risks of new deployments. Oracle University offers flexible training formats from instructor-led classes to online training. It trains over 350,000 students annually to help ensure technology strategies are successfully implemented through understanding, effective use of systems, and reinforcement of skills and knowledge.
Oracle Services Day 12.05.2010. Customer day services strategy keynote henrik...Oracle Hrvatska
The document outlines the agenda for an Oracle Services event. It includes presentations on Oracle's services strategy, making the most of Oracle Services, an Oracle Consulting overview and regulatory solution, saving money with Oracle University, and experiences using Oracle services from PBZ bank. Henrik Wegge-Berg will discuss Oracle's services strategy for Eastern Europe and CIS. Other presentations will cover Oracle Consulting, Oracle University training, and a customer case study from PBZ bank. The event aims to showcase how Oracle Services can help customers succeed through training, consulting, support and optimization.
Oracle Services Day 12.05.2010. Making the most of Oracle ServicesOracle Hrvatska
Making the most of Oracle Services discusses Oracle's support services portfolio including Oracle Premier Support, Advanced Customer Services, and the Oracle Customer Success Assessment. Oracle Premier Support provides proactive, automated, and personalized support through tools on My Oracle Support. Advanced Customer Services consists of over 700 experts dedicated to continual operational improvement of Oracle environments. The Oracle Customer Success Assessment is a 15-minute online survey that provides a personalized benchmark report comparing results to peers and recommendations on Oracle services.
Hp oracle information age 13.apr.2010.ppt [compatibility mOracle Hrvatska
This document discusses how HP can help organizations address issues caused by IT sprawl and move towards a converged infrastructure in line with Oracle's direction. It outlines how converged infrastructure can improve utilization rates and business agility. HP recommends its reference architectures for Oracle which are validated hardware and software integrations following Oracle's requirements. HP services can also help customers with planning, design, implementation and management of a converged infrastructure solution.
Frank oracle strategy v2.3 fb.ppt [compatibility mOracle Hrvatska
The document discusses Oracle's strategic view of creating options for customers through its IT products and services. It summarizes Oracle's strategy as evolving through three phases: [1] supporting best of breed applications for flexibility, [2] providing a one stop shop for efficiency, and [3] its current focus on integrated "fusion" applications and middleware that provide both flexibility and pre-integration. The strategy aims to help customers adapt quickly to changing needs through acquisition of new technologies and capabilities.
Alain ozan keynote zagreb.ppt [compatibility mOracle Hrvatska
This document outlines Oracle's general product direction and provides information on its applications, middleware, database, infrastructure and management products. It discusses Oracle's leadership in key markets and industries. The document also discusses Oracle's strategy around cloud computing, including how enterprises can evolve their IT environments from private to public clouds through a hybrid approach.
The document discusses Allegro Group's implementation of a data warehouse on an Oracle Database Machine using Oracle Warehouse Builder and Oracle Business Intelligence Enterprise Edition. The first project took 6 months and involved 8 people to build a data warehouse with over 100 reports and 160 KPIs sourcing data from systems with up to 7TB in size and 2.8 billion records. The data warehouse architecture includes loading data from a production Oracle database to a staging area and then performing ETL processes to load the data into a production schema for analytics and reporting.
Nek e am_overview_2010_1f.ppt [compatibility mOracle Hrvatska
This document provides an overview of the implementation of Oracle EBS and EAM systems at Nuklearna Elektrarna Krško (NEK), a nuclear power plant in Slovenia. Some key details include:
- The project aims to implement a new long-term IT solution to support plant safety, reliability, and cost effectiveness.
- Implementation began in July 2009 and is planned to go-live in March 2011 using the Application Implementation Method.
- The system will include modules like asset management, maintenance management, project management, and financials to support overall business operations.
- NEK hopes to establish industry best practices and requirements through partnerships like the Oracle EAM Customer Advisory Board.
- Proper
The document discusses how Oracle CRM On Demand can help companies achieve better sales results faster. It argues that Oracle CRM On Demand allows companies to get smarter through insights, get more productive by streamlining processes, and get the best value through low total cost of ownership. The key benefits highlighted are increased win rates, faster sales cycles, better leads, focus on best opportunities, alignment through trusted data, immediate action on insights, uncovered hidden demand, proven return on investment, and guidance from Oracle's experience.
Db security vaba information age 2010 v6.ppt [compatibility m
1. Sigurnost na nivou baze podataka
Nikola Pajnogač, VABA
Morana Kobal Butković, Oracle Hrvatska
2. Izazovi vezani uz sigurnost podataka
• Što štititi?
• Osjetljivi podaci: povjerljivi, osobni (PII), regulatorni zahtjevi
• Podaci unutar aplikacija različitih proizvoñača
• Sigurni životni ciklus: kreiranje, transport, pohranjivanje, backup, test
• Kako zaštiti podatke u postojećim sustavima?
• Transparentno?
• Gubitak podataka, neodobreni pristup, segregacija dužnosti
• Možemo li zadovoljiti poslovne zahtjeve?
• Fleksibilno, transparentno, usklañeno s regulativom?
• Osigurati aplikacije različitih proizvoñača?
• Možemo li smanjiti operativne troškove?
• Jednostavno upravljanje?
• Performanse?
2
3. anketa: Poslovni podaci i rizik
The 2009 IOUG Data Security Report:
Smanjivanje budžeta dovodi do povećanja rizika
Samo 21% Samo 20% Samo 12%
kriptira osobne kriptira promet kriptira backupe i eksporte
podatke u svim prema bazama baza podataka
bazama podataka
50% 48% 70%
nije svjesno svih kaže da korisnici mogu koristi auditing, ali se
baza s osjetljivim podatke dostupiti mimo samo 18% automatski
podacima aplikacije monitorira
61% 67% Manje od 30%
nemože spriječiti nemože otkriti je li monitorira čitanje/pisanje
administratore da to rañeno osjetljivih podataka
čitaju/mijenjaju osjetljive
podatke
4. Osiguranje podataka u bazi
• Kriptiranje • Monitoriranje
aktivnosti
• Maskiranje
• Praćenje promjena
• Klasifikacija
• Otkrivanje i
• Kontrola pristupa
procjena
• Sigurne
Detection konfiguracije
5. Oracle Advanced Security
Transparent Data Encryption
Disk
Backups
Exports
Application
Off-Site
Facilities
• Kriptiranje podataka na mediju za pohranu
• Transparentno za aplikacije
• Efikasno kriptiranje svih aplikacijskih podataka
• Ugrañeno upravljanje ključevima
6. Oracle Advanced Security
Kriptiranje mrežnog prometa i pojačana autentikacija
• Na standardima bazirano kriptiranje podataka na prijenosnom putu
• Autentikacija korisnika i servera korištenjem autentikacijskih
rješenja drugih proizvoñača
• Izmjene u infrastrukturi nisu potrebne
• Jednostavnost implementacije
7. Oracle Data Masking
Nepovratna deidentifikacija podataka
Production Non-Production
LAST_NAME SSN SALARY LAST_NAME SSN SALARY
AGUILAR 203-33-3234 40,000 ANSKEKSL 111—23-1111 60,000
BENSON 323-22-2943 60,000 BKJHHEIEDK 222-34-1345 40,000
• Uklanjanje osjetljivih podataka iz ne-produkcijskih baza podataka
• Očuvanje referencijalnog integriteta i kompatibilnosti aplikacija
• Osjetljivi podaci nikada ne napuštaju baze podataka
• Proširiva biblioteka uzoraka i pravila za automatizaciju maskiranja
Oracle Confidential 7
8. Oracle Database Vault
Separacija dužnosti i kontrola privilegiranih korisnika
Procurement
DBA
HR
Application
Finance
select * from finance.customers
• Separacija dužnosti administratora baze podataka
• Limitiranje mogućnosti privilegiranih korisnika
• Konsolidiranje podataka različitih aplikacija na siguran način
• Nije potrebna prilagodba aplikacija
9. Oracle Database Vault
Više-faktorska kontrola pristupa
Procurement
HR
Application Rebates
• Zaštita aplikacijskih podataka i sprečavanje dostupa podacima
zaobilaženjem aplikacija
• Definiranje tko, gdje, kada i kako dostupa podatke korištenjem pravila i
faktora
• Predefinirana pravila pristupa za Oracle aplikacije kao i prilagodba
pravila pristupa ovisno o pojedinim aplikacijama
10. Oracle Audit Vault
Automatizirano monitoriranje aktivnosti i izvještavanje
HR Data ! Alerts
Built-in
CRM Data Reports
Audit
Data Custom
ERP Data Reports
Databases Policies
Auditor
• Konsolidiranje podataka o nadzoru u sigurni repozitorij
• Detektiranje i uzbunjivanje o sumnjivim aktivnostima
• Predefinirani izvještaji u skladu s regulativom
• Centralizirano upravljanje postavkama nadzora
11. Zašto korisnici u regiji investiraju u
sigurnosne opcije baze podataka?
• Advanced Security za kriptiranje osobnih podataka zaposlenika
• Advanced Security za usklañivanje s internacionalnom ili nacionalnom
regulativom kroz kriptiranje povjerljivih podataka o korisnicima
• DB Vault za separaciju dužnosti pri administraciji baza podataka
• DB Vault za sprečavanje internih korisnika i administratora u dostupu
do osjetljivih informacija i dostavljanju tih informacija konkurenciji
• DB Vault, Advanced Security, Data Masking za sprečavanje
sigurnosnih incidenata od strane vanjskih suradnika ili administratora
koji rade unutar iste kompanije
• Audit Vault kao infrastruktura za nadzor usklañena sa zahtjevima
auditora
• Audit Vault za dugotrajno pohranjivanje podataka o nadzoru prema
zahtjevima nacionalnih banaka
13. VABA d.d.
Banka Varaždin
• Osnovana 2005. godine
• Regionalna banka, orijentirana na sjeverozapadnu
Hrvatsku
• Približno 190 zaposlenih
• 11 poslovnica, 2 središnje lokacije
• Vlastiti razvoj
• Produkcijski sustav banke zasnovan na Oracle bazi
podataka i Javi kao aplikacijskom sloju
14. Poslovni zahtjevi
• Osigurati nadzor aktivnosti nad produkcijskim okruženjem
banke
• Omogućiti neporecivost i dokazivost svih radnji nad bazom
• dokumentiranje i bilježenje korisničke aktivnosti
• preventivno odvraća korisnike od nedozvoljenih aktivnosti
• Jednostavnost izvješćivanja
• Mogućnost čuvanja audit podataka minimalno godinu dana
• Posebna pažnja usmjerena na proces aplikativnog razvoja
– povezivanje zahtjeva poslovne strane s radnjama na bazi
15. Implementacija Audit Vaulta
u sustav VABA banke
• Auditing na bazi implementiran 1.1.2009.
• Do travnja 2010. oko 25 GB podataka
• Relativno jednostavna instalacija
• Audit Vault servis radi malo opterećenje
• Manji problemi tijekom korištenja (većinom poboljšani
nakon patchiranja na najnoviju verziju Audit Vaulta
10.2.3.2)
16. Infrastruktura
• Hardver/OS:
• Oracle Audit Vault Server:
• Intel server, Xeon CPU, 4 GB RAM
• Red Hat Linux 3.5
• Oracle Baza:
• Intel server, Xeon CPU, 8 GB RAM
• Windows 2003 klaster
• Manualno prebacivanje Audit Vault servisa u slučaju
pada dijela klastera
17. Audit Vault - konzola
Centralni pregled sustava
• Pregled uzbuna po:
• Mjestu nastanka
• Vrsti dogañaja
Pregled uzbuna
• Popis posljednjih
uzbuna
• Najčešće pristupani
objekti
• Neuspjele prijave na
bazu
Oracle Confidential 17
18. Postavke auditinga
• Postavke auditinga (Audit Policy) su centralizirano
definirane na jednaki način za sve korisničke i
povlaštene (SYSDBA, SYSOPER, …) račune na bazi
• Za ostale račune prati se prijava i odjava na bazu
19. Izvještavanje
Predefinirani izvještaji
• Što je sve korisnik A radio na bazi podataka
• Što je privilegirani korisnik radio u posljednja 24 sata
• Pristup i mijenjanje podataka/procedura
• Promjene strukture baze podataka
• Akcije visoko privilegiranih korisnika/administratora
• Dodavanje novih korisničkih računa te prava pristupa
• Rana detekcija sumnjivih aktivnosti
23. Primjer izvještaja
• Mogućnost proširivanja izvještaja
Mogućnost
proširivanja
izvještaja raznim
varijablama, čak do
nivoa kompletnog
SQL-a.
Oracle Confidential 23
25. Zaključak
Što smo dobili:
• Potpun nadzor nad svim radnjama provedenim nad
produkcijskom bazom podataka
• Nadzor i mogućnost mapiranja radnji u bazi s
zahtjevima poslovne strane
• Moguća rekonstrukcija svih radnji u slučaju potrebe ili
incidentne situacije
• Malo opterećenje produkcijskog okruženja
• Nužnost kvalitetne uspostave procesa aplikativnog
razvoja
• Usklañenost s člankom 21. Odluke HNB-a(2007)
Oracle Confidential 25