|
The need to assign sensitivity labels to data
has existed for hundreds of years and continues to exist today
in virtually every industry. Scientific discoveries made in
the 21st century are no more closely guarded than scientific
discoveries made in the 17th century. In 1998 Oracle added
Virtual Private Database (VPD) to the security features available
in Oracle Enterprise Edition. VPD greatly enhances the ability
to control access to data by giving administrators the ability
to add security policies to objects in the Oracle RDBMS. With
VPD, application size and complexity decrease while security
increases. This is because the VPD security policy is centralized
in the Oracle server. Oracle Label Security™ is a powerful
new database security option for controlling access to individual
data rows and protecting critical data. Built on the same
technology as VPD, it provides exciting new security functionality
for industries where confidentiality, privacy and data sensitivity
are vital to the success of the enterprise. Healthcare, financial
services, law enforcement and defense are just a few of the
industries which can benefit from Oracle Label Security. In
a hosted application, what mechanism separates multiple companies
sharing a single instance application? The answer is a sensitivity
label. Sensitivity labels provide highly granular row level
security capabilities. A sensitivity label can be as simple
as a company name, or it can be a complex series of code words
added to a document being delivered to the President of the
United States or the Chief Executive Officer of a corporation.
A sensitivity label can be used to restrict access to patient
medical records or to protect an ongoing criminal investigation.
Oracle Label Security is designed to address the sophisticated
access control requirements found in today's e-business environment.
It is the first label based access control product designed
specifically for the most popular commercially available operating
systems. Oracle Label Security enforcement options allow security
policies to be finely tuned for specific industry environments.
One of the key advantages Oracle Label Security offers is
the fact that the software for row level security is provided
out-of-the-box. It allows the developer or administrator to
quickly and easily get started with sensitivity labels and
highly granular row level security. In addition, Oracle Label
Security enforcement options allow security to be tailored
to the specific needs of the enterprise. With Oracle Label
Security, no development costs are incurred writing the software
to enforce row level security. Oracle Label Security can thus
dramatically shorten the development timeline, resulting in
lower development and maintenance costs. System integrators
can bid Oracle Label Security as a commercial off the shelf
(COTS) solution in proposals. The evolution of the Internet
and rapid consolidation within the computer industry has made
flexibility a key factor in IT expenditures. Oracle Label
Security is built to meet stringent, real world, operational
requirements for row level security found in government and
commercial organizations. Oracle Label Security is built for
today’s Internet environment and incorporates years of feedback
received from Oracle customers in both government and commercial
organizations. Oracle Label Security is available on standard,
commercially available operating systems, giving IT managers,
in government and commercial organizations, hardware flexibility.
Oracle Policy Manager is the GUI administration tool for Oracle
Label Security. Based on the Oracle Enterprise Manager framework,
Oracle Policy Manager can be used to define sensitivity labels,
authorize users and protect tables or entire schemes in the
Oracle database.
More
Info
Oracle9i
Daily Features
|
 |
Bookmark
