Oracle Label Security

Oracle Label Security was introduced in Oracle8i to provide multi-level security capabilities within the Oracle Database for government and defense organizations. Since then, the use of label based access control technology has expanded to commercial organizations addressing privacy and regulatory compliance requirements. Oracle Label Security has the ability to:

  • Control access based on data classification, adding a powerful dimension to the access control decision process.
  • Enforce traditional multi-level security (MLS) policies for government and defense applications.

In addition, Oracle Label Security user authorizations such as "Sensitive:PII" can be used:

For government and defense applications Oracle Label Security provides multi-level security (MLS) capabilities to protect classified information. Please refer to the Label Security best practices paper for more information on Oracle Label Security MLS capabilities.


 Using OLS user authorizations to create powerful Command Rules in Oracle Database Vault
 OLS user authorizations in VPD policies: Determine access to application table columns based on user authorizations
 Six steps towards a successful multi level security implementation

Security Features

Strong Authentication
Network Encryption
Real Application Security
Unified Auditing
Secure External Password Store
Virtual Private Database
Traditional Database Auditing
Proxy Authentication
Enterprise User Security
Secure Application Roles
Fine Grained Auditing

Technical Information

 Overview White Paper
 Government and Defense Environments White Paper
 Technical White Paper
 Best Practices
 Frequently Asked Questions
 Oracle Label Security with Oracle E-Business Suite: Best Practices

Security Solutions

 Oracle Database Vault
 Oracle Advanced Security
 Oracle Label Security
Oracle Audit Vault and Database Firewall
Oracle Data Masking and Subsetting

Discussion Forums

 Oracle Audit Vault and Database Firewall
Oracle Database Cloud

ODTUG Kscope 15