Appendix ASetting Up theSecurity Manager

Separation of duty is an important security principle. It means that different users will perform different actions. The objective is to create and manage users and assign privileges in a way that maximizes security. The least privilege principle serves as a guide. For this book, the SEC_MGR user performs most of the security-related administration tasks. This appendix lists the privileges given to the SEC_MGR user to fulfill the mission of security manager for the examples given herein.

The privileges are granted directly to the user. This is done to allow the user to create procedures using the default definer rights model. In the definer rights model, roles are disabled. The SEC_MGR was created originally ...

Get Effective Oracle Database 10g Security by Design now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.