Oracle Advanced Security

Oracle Advanced Security, a commonly used option with Oracle Database Enterprise Edition, provides two important preventive controls to protect sensitive data at the source including database encryption (Transparent Data Encryption (TDE)) and on-the-fly redaction of display data. TDE stops would-be attackers from bypassing the database and reading sensitive information directly from storage by enforcing data-at-rest encryption in the database layer. Data Redaction complements TDE by reducing the risk of unauthorized data exposure in applications, redacting sensitive data before it leaves the database. Together these two controls form the foundation of Oracle’s defense-in-depth, multi-layered database security solution.

Oracle Advanced Security Overview

Customer References

 Montage: Customers Discuss Using Data Redaction to Limit Exposure of Sensitive Data in Their Applications (Video)
 Montage: Customers Discuss Using Oracle Advanced Security TDE to Encrypt Sensitive Data (Video)
 Infinity Insurance Uses Encryption and Redaction, Sees Zero Impact on Applications and No Performance Degradation (Video | Success Cast)
 Epsilon Uses TDE to Encrypt Cardholder Data and Redaction to Protect PII (Video 1 | Video 2 | Success Cast)
 Qatar Olympic Committee Deploys Database Security (Success Story)
 Sabre Discusses Using Data Redaction to Conceal Traveler Data (Video)
 SuddenLink Uses Transparent Data Encryption to Encrypt HR and Customer Data (Success Cast)
 T-Mobile Encrypts Subscriber Data With Oracle Advanced Security (Video | Success Cast)
 Square Two Encrypts Sensitive Financial Data (Video | Success Cast)
 Columbia University Encrypts PeopleSoft Data With Oracle Advanced Security (Success Cast)
 TransUnion Encrypts Financial and Credit Data (Video | Magazine Article | Success Cast | Webcast)
 Neustar Leverages TDE and Data Redaction to Protect SaaS Analytical Application Data (Success Story)
 Chinae Savings Bank in Korea Uses Oracle Advanced Security to Encrypt Data (Success Story)
 Abu Dhabi Department of Finance Encrypts Sensitive Financial Information Using TDE (Success Story)
 Serviço Federal de Processamento de Dados – Serpro Encrypts Brazilian Government Data (Success Story)
 Ross Stores Encrypts PCI and PII Data With Oracle Advanced Security (Success Cast)
 Oracle Advanced Security Helps Sabre Comply with PCI-DSS Encryption Requirements (Success Cast | iPhone)
 National Marrow Donor Program Encrypts Healthcare Data (Video)
 Educational Testing Services (ETS) Encrypts Student Data (Video | Success Story | Success Cast | Magazine Article)
 South Korean Travel Firm Hanatour Encrypts Customer Data (Success Story)
 IBI Group Encrypts Road Tolling Data for PCI DSS Compliance (Success Cast)
 Philadelphia College of Osteopathic Medicine Encrypts Healthcare Data (Success Cast)
 Korean Shilla Savings Bank Encrypts Financial Data with Transparent Data Encryption (Success Story)
 More Oracle Advanced Security Customers


Oracle Advanced Security
Database Security Inside Out

Discussion Forums

Oracle Audit Vault and Database Firewall

Technical Information

 Datasheet - Oracle Advanced Security with Oracle Database 12c
 White Paper - Encryption and Redaction in Oracle Database 12c with Oracle Advanced Security
 Documentation - Oracle Advanced Security in Oracle Database 12c
 Oracle Database 11g Release 2 - TDE Best Practices
 Oracle Database 11g Release 2 - TDE Frequently Asked Questions (FAQ)
 Example of Setting Up Data Redaction (Oracle Magazine, Jan 2014, Arup Nanda)
 New! White Paper on Deploying TDE for Existing Data with Near-Zero Downtime Using Oracle DataPump and Oracle Data Guard (Oracle Database 12c and 11gR2)
 New! Frequently Asked Questions - Oracle Advanced Security Transparent Data Encryption (TDE) with Oracle Database 12c

Instructional Videos

 Product Overview - Oracle Advanced Security in Oracle Database 12c
 Demonstration - Configuring Data Redaction for a Sample Call Center Application
 Demonstration - Configuring TDE and Key Management in Oracle Database 12c
 OpenWorld 2014 Session on Oracle Advanced Security (OU Streams Video)
 OpenWorld 2014 Live: Data Redaction on Oracle BigData/Hadoop. Click here (Thomas Kurian Keynote, 23rd minute) and here (Andy Mendelsohn Keynote, 55th minute)

Video Dramatizations

 Prescription for Disaster - Unencrypted Medical Prescription Data Is Stolen from a Pharmacy Company
 An IT Security Officer Is Given Only Three Weeks to Encrypt the Company's Oracle Data
 Shedding Light on Security - An IT Team Discovers How Data Redaction Can Conceal PII Data in Their Call Center Application

Security Solutions

Oracle Database Vault
Oracle Advanced Security
Oracle Label Security
Oracle Audit Vault and Database Firewall
Data Masking and Subsetting

Security Features

Real Application Security
Unified Auditing
Secure External Password Store
Virtual Private Database
Traditional Database Auditing