oracle-db12c-logo

Data Redaction


Oracle Advanced Security Data Redaction provides selective, on-the-fly redaction of sensitive data in SQL query results prior to display by applications so that unauthorized users cannot view the sensitive data. It enables consistent redaction of database columns across application modules accessing the same database information. Data Redaction minimizes changes to applications because it does not alter actual data in internal database buffers, caches, or storage, and it preserves the original data type and formatting when transformed data is returned to the application. Data Redaction has no impact on database operational activities such as backup and restore, upgrade and patch, and high availability clusters. Unlike historical approaches that require making changes to applications or proxying components of the database, Data Redaction policies are enforced directly in the database kernel, resulting in tighter security and better performance.


Data Redaction Overview

Declarative redaction policies can apply different data transformations such as partial, random, and full redaction. Data Redaction can be applied conditionally, based on different factors that are tracked by the database or passed to the database by applications such as user identifiers, application identifiers, or client IP addresses. A redaction format library provides pre-configured column templates to choose from for common types of sensitive information such as credit card numbers and national identification numbers. Once enabled, redaction polices are enforced immediately, even for active sessions.

Data Redaction fully supports Oracle Multitenant. When moving a pluggable database (PDB) that has redaction policies, the policies transfer directly to the new multitenant container database as part of the PDB. Redaction immediately resumes its normal operation after the PDB has been plugged in and configured.


Customer References


 Montage: Customers Discuss Using Oracle Advanced Security TDE to Encrypt Sensitive Data (Video)
 T-Mobile Encrypts Subscriber Data With Oracle Advanced Security (Video | Success Cast)
 Square Two Encrypts Sensitive Financial Data (Video | Success Cast)
 Columbia University Encrypts PeopleSoft Data With Oracle Advanced Security (Success Cast)
 TransUnion Encrypts Financial and Credit Data (Video | Magazine Article | Success Cast | Webcast)
 Ross Stores Encrypts PCI and PII Data With Oracle Advanced Seucrity (Success Cast)
 Oracle Advanced Security Helps Sabre Comply with PCI-DSS Encryption Requirements (Success Cast | iPhone)
 National Marrow Donor Program Encrypts Healthcare Data (Video)
 Educational Testing Services (ETS) Encrypts Student Data (Video | Success Story | Success Cast | Magazine Article)
 South Korean Travel Firm Hanatour Encrypts Customer Data (Success Story)
 IBI Group Encrypts Road Tolling Data for PCI DSS Compliance (Success Cast)
 Philadelphia College of Osteopathic Medicine Encrypts Healthcare Data (Success Cast)
 Korean Shilla Savings Bank Encrypts Financial Data with Transparent Data Encryption (Success Story)
 More Oracle Advanced Security Customers

Technical Information


 Datasheet - Oracle Advanced Security with Oracle Database 12c
 White Paper - Encryption and Redaction in Oracle Database 12c with Oracle Advanced Security

Security Solutions


Oracle Database Vault
Oracle Advanced Security
Oracle Label Security
Oracle Audit Vault and Database Firewall
Data Masking

Security Features


Strong Authentication
Network Encryption
Real Application Security
Unified Auditing
Secure External Password Store
Virtual Private Database
Traditional Database Auditing
Proxy Authentication
Enterprise User Security
Secure Application Roles
Fine Grained Auditing

Discussion Forums


Security
Oracle Audit Vault and Database Firewall
Left Curve
Popular Downloads
Right Curve
Untitled Document
Left Curve
More Database Downloads
Right Curve