To further protect sensitive application data residing in an Oracle database from unauthorised access by any database user, including privileged database administrators (DBA), Oracle Database Vault now includes extensible policies for use with Oracle's JD Edwards EnterpriseOne, Oracle announced today.
Oracle Database Vault enables JD Edwards EnterpriseOne customers to restrict access to application data by highly privileged users, enforce separation-of-duty within the Oracle database, prevent application bypass and enforce enterprise security policies with multi-factor authorisation.
Requiring no special modifications to the JD Edwards EnterpriseOne applications, Oracle Database Vault defends transparently against unauthorised access to application data residing in the database as well as accidental or intentionally harmful database changes by users.
Specifically, the default Oracle Database Vault policies for JD Edwards EnterpriseOne will establish:
* An Application Protection Realm to prevent privileged users from accessing sensitive information;
* A Configuration Protection Realm to protect the application metadata against unauthorised changes; and,
* A Command Rule to authorise the JD Edwards application connections to the Oracle Database based on IP address and client application.
The default policies can be customised and further extended to take into account other factors such as time of day, day of week, authentication, and more.
Organisations can implement Oracle Database Vault to enforce separation of duties within the database. For example, Oracle Database Vault can block privileged users with DBA rights from reading or changing critical application data while allowing a DBA to perform daily operations such as database backup and recovery, tuning, and replication.
In addition to increasing the security of existing applications, Oracle Database Vault helps organisations meet regulatory mandates such as Sarbanes-Oxley (SOX), Payment Card Industry (PCI) Data Security Standard (DSS), Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), and similar global directives that call for separation-of-duties and other preventive controls to ensure data integrity and data privacy.
Oracle Database Vault is now certified with all JD Edwards EnterpriseOne application modules and releases version 8.12 and higher, Oracle's Siebel CRM, the Oracle E-Business Suite, and Oracle's PeopleSoft Enterprise.
“Oracle Database Vault delivers immediate value to JD Edwards EnterpriseOne customers by transparently protecting application data within the Oracle Database,” said Vipin Samar, vice-president of Database Security, Oracle. “Using Oracle Database Vault, organisations can better meet challenging global privacy mandates that call for limiting access to sensitive information by privileged users without costly application changes.”
“With Oracle Database Vault, customers running their businesses on JD Edwards EnterpriseOne are enabled to protect mission-critical data more effectively against insider threats and to meet regulatory compliance,” said Oracle Group Vice-President and General Manager, JD Edwards, Lenley Hensarling.
Oracle Innovation Showcase:
For more than 32 years, Oracle has been a technology innovator, transforming the way business is conducted. To learn about Oracle's latest technologies, visit the Innovation Showcase during the 100 days before Oracle OpenWorld. See oracle.com/innovation for more information.
Share