Back to Oracle Label Security homepage

Oracle Label Security


Successful Multi-level Security implementation

 
Oracle Label Security Multi-level Security step 1 of 6
 
 
 
 
Oracle Label Security Multi-level Security step 2 of 6
 
 
 
 
Oracle Label Security Multi-level Security step 3 of 6
 
 
 
 
Oracle Label Security Multi-level Security step 4 of 6
 
 
 
 
Oracle Label Security Multi-level Security step 5 of 6
 
 
 
 
Oracle Label Security Multi-level Security step 6 of 6
 
Identify tables holding sensitive data Classify your data Examine user population Determine valid labels Create an OLS policy Add labels to existing and new data



When an OLS policy is applied to a table, it appends a hidden column to that table, which will store the row ("classification") label. Initially, the values in this column are NULL, and, when READ_CONTROL is activated, no-one has access to this table anymore, except those administrative users with the READ or FULL privilege.
Either find the label for each row manually or determine them by a where clause:

  SQL> update <table_name> set OLS_COLUMN = 
        char_to_label ('<policy_name>','<valid_label>')
        where <condition>

When new rows are added to the table, the labels are either determined by the user's write label, or a labeling function, which determines the label from other columns in this row or other tables.



Hands-On


 Using OLS user authorizations to create powerful Command Rules in Oracle Database Vault
 OLS user authorizations in VPD policies: Determine access to application table columns based on user authorizations
 Six steps towards a successful multi level security implementation

Security Features


Strong Authentication
Network Encryption
Real Application Security
Unified Auditing
Secure External Password Store
Virtual Private Database
Traditional Database Auditing
Proxy Authentication
Enterprise User Security
Secure Application Roles
Fine Grained Auditing

Discussion Forums


 Security
 Oracle Audit Vault and Database Firewall
 Database

Technical Information


 Datasheet
 Overview White Paper
 Government and Defense Environments White Paper
 Technical White Paper
 Best Practices
 Frequently Asked Questions
 Oracle Label Security with Oracle E-Business Suite: Best Practices

Security Solutions


 Oracle Database Vault
 Oracle Advanced Security
 Oracle Label Security
Oracle Audit Vault and Database Firewall
Data Masking

In-Memory Replay Banner