Data Redaction

Oracle Advanced Security Data Redaction provides selective, on-the-fly redaction of sensitive data in SQL query results prior to display by applications so that unauthorized users cannot view the sensitive data. It enables consistent redaction of database columns across application modules accessing the same database information. Data Redaction minimizes changes to applications because it does not alter actual data in internal database buffers, caches, or storage, and it preserves the original data type and formatting when transformed data is returned to the application. Data Redaction has no impact on database operational activities such as backup and restore, upgrade and patch, and high availability clusters. Unlike historical approaches that require making changes to applications or proxying components of the database, Data Redaction policies are enforced directly in the database kernel, resulting in tighter security and better performance.

Declarative redaction policies can apply different data transformations such as partial, random, and full redaction. Data Redaction can be applied conditionally, based on different factors that are tracked by the database or passed to the database by applications such as user identifiers, application identifiers, or client IP addresses. A redaction format library provides pre-configured column templates to choose from for common types of sensitive information such as credit card numbers and national identification numbers. Once enabled, redaction polices are enforced immediately, even for active sessions.

Data Redaction fully supports Oracle Multitenant. When moving a pluggable database (PDB) that has redaction policies, the policies transfer directly to the new multitenant container database as part of the PDB. Redaction immediately resumes its normal operation after the PDB has been plugged in and configured.

Customer References Montage: Customers Discuss Using Oracle Advanced Security TDE to Encrypt Sensitive Data (Video) T-Mobile Encrypts Subscriber Data With Oracle Advanced Security (Video | Success Cast) Square Two Encrypts Sensitive Financial Data (Video | Success Cast) Columbia University Encrypts PeopleSoft Data With Oracle Advanced Security (Success Cast) TransUnion Encrypts Financial and Credit Data (Video | Magazine Article | Success Cast | Webcast) Ross Stores Encrypts PCI and PII Data With Oracle Advanced Seucrity (Success Cast) Oracle Advanced Security Helps Sabre Comply with PCI-DSS Encryption Requirements (Success Cast | iPhone) National Marrow Donor Program Encrypts Healthcare Data (Video) Educational Testing Services (ETS) Encrypts Student Data (Video | Success Story | Success Cast | Magazine Article) South Korean Travel Firm Hanatour Encrypts Customer Data (Success Story) IBI Group Encrypts Road Tolling Data for PCI DSS Compliance (Success Cast) Philadelphia College of Osteopathic Medicine Encrypts Healthcare Data (Success Cast) Korean Shilla Savings Bank Encrypts Financial Data with Transparent Data Encryption (Success Story) More Oracle Advanced Security Customers

Technical Information Datasheet - Oracle Advanced Security with Oracle Database 12c White Paper - Encryption and Redaction in Oracle Database 12c with Oracle Advanced Security Security Solutions Oracle Database Vault Oracle Advanced Security Oracle Label Security Oracle Audit Vault and Database Firewall Data Masking Security Features Strong Authentication Network Encryption Real Application Security Unified Auditing Secure External Password Store Virtual Private Database Traditional Database Auditing Proxy Authentication Enterprise User Security Secure Application Roles Fine Grained Auditing Discussion Forums Security Oracle Audit Vault and Database Firewall