Please explain for Oracle please. You have been tasked to analyze and assess the
ID: 3842719 • Letter: P
Question
Please explain for Oracle please.
You have been tasked to analyze and assess the security posture of your organization’s database. Throughout this course, the assignments will have you review and analyze the policies and processes procedures that are implemented to ensure the security of one of an organization’s most important assets: Data.
You will learn and understand how data is stored in a database and what are some of the security concerns when dealing with a database. To begin, you must identify the Database Management System (DBMS) that your organization uses or intends to use, you can choose or work with any database but this will be the database you will work with throughout this course.
For this first Discussion Board you are to perform the following tasks:
Pick/list and describe the DBMS selected. You should pick a database you are already familiar with, as you will perform actions and run SQL against the Data Dictionary.
Note: Access is not an acceptable choice.
Describe the security features offered by the DBMS and vendor.
Define the concept of a schema, and specify how your specific DBMS implemented the schema.
Explanation / Answer
Oracle database provides security in the following areas
1. Encryption : There are several API using data encryption, where data over the network is prevented from unauthorized access.
2. Auditing Activities on database : It can be done on all SQL statements, privileges, schemas and over network
3. Authentication : Oracle provides various authentications for administrative users and operating system users. for example consider unix system, where we have opearting system users to start and stop the database and other administrative activities,
where we can authenticate those users to database and also through the network
4.Privilege Management : a user can be restricted with respective privilegs and roles to perform any kind of activity in the system.
5. Application security : when an application is insatlled it will used as a frontend accessing the backend data from database, here the database provides the application security
6. User Account : There are several user accounts for schema users, operating system users for example we have different users like SYSTEM, SYS, SYSDBA and other schemas, where as operating system users for oracle administration.
7. Application Context : which holds the user session information, where it checks the context and restrict the access to the user once the session limits were crossed.
My example is about considering SAP as an application, database as Oracle and platform as unix.
We get operating systems user like ora<sid> and groups are dba and oper
similarly we get schema users in the database build for the application they are SAPSR3, SYSTEM, SYSDBA, SYS etc
schema is a logical structure of data stored in like tablespaces, Where in phiysical, data is stored as sapdata1, sapdata2, sapdata3 .. in the file system.