Topic: Oracle Programming
Download (279) times
Last Download at Friday 04th of May 2012 01:17:46 AM
Hacking And Protecting Oracle Database Vault
Introduction to Oracle Database Vault? What is Oracle Database Vault, What changes introduce, Oracle Database Vault elements., Attacks against Database Vault, Getting OS access, Impersonating MACSYS user, Special considerations for the SYS user o SQL Injection in SYS schema, Oracle Database Auditing and SYS user, Additional protection measures, Conclusions.
It's an add-on to Oracle Database. Supported Oracle Database Releases: 9i R2, 10g R2, 11g R1 and 11g R2. "Oracle Database Vault can prevent highly privileged users, including powerful application DBAs and others, from accessing sensitive applications and data in Oracle databases outside their authorized responsibilities" The DBA no longer has unlimited access to database data. Helps protect against the insider threat and address regulatory compliance needs such as Sarbanes-Oxley (SOX) and PCI . The main goal of Oracle Database Vault is to provide Separation of Duty.
What changes with Database Vault In older releases: OS authentication to the database is disabled. Login "AS SYSDBA" blocked by default o SYS user can only log on "AS SYSOPER" o Some applications are incompatible with this: RMAN, Oracle RAC and some Oracle command line utilities. o Can be enabled with nosysdba=y parameter in orapwd program
Source: media.blackhat.com
Related PDF Files
Comments for Hacking And Protecting Oracle Database Vault