The primary purpose of Oracle Database software is to manage the valuable data that lies at the core of virtually every operation in your organization. Part of the value of that data is that the data is yours—the data that can be used to give your company unique advantages. For this reason, you need to protect your data from others who should not have access to it. This protection is the subject of this chapter. Here we focus on three different aspects of the overall task of protecting your data:
Covers the tools and features that you use to allow access only to those people authorized to view or use specific data.
Allows you to discover who did what with your data. Auditing is the process of creating a history of access that can be used to understand database operations as well as spot access violations and attempts.
This is the ability to prove that your data is secure and reliable—a proof that is now legally required in many cases. Although compliance may strike many technical folks as overkill, the simple fact is that a lack of compliance alone may result in significant penalties to your company. Compliance is thus a topic of great interest to management.
One of the most important aspects of managing the Oracle Database effectively in a multiuser environment is the creation of a security scheme to control access to and modification of the database. In an Oracle Database, you grant security clearance ...