INFORMATION INDEPTH NEWSLETTER
Database Insider Edition
Oracle Corp
August 2012 Stay Connected: TwitterFacebookYoutube Blog
Back to the main page
Oracle Data Masking Strengthens Security of Oracle E-Business Suite Data

To more easily and effectively protect sensitive data in nonproduction environments, Oracle has released the new Oracle E-Business Suite 12.1.3 template for data masking.

The latest release is part of a suite of products designed specifically to protect sensitive data in Oracle E-Business Suite environments, including Oracle Advanced Security, Oracle Database Vault, Oracle Audit Vault, and Oracle Database Firewall.

“It’s important to protect sensitive production data, especially when copying to nonproduction environments for testing, QA, development, or offshoring and outsourcing purposes,” explains Willie Hardie, vice president, Oracle Database Product Marketing. “However, manually masking data in enterprise application databases can be time-consuming, and if not done correctly, easily prone to error. Masking data must maintain referential integrity so that applications can continue to function properly without exposing sensitive data.”

The new template helps automate this process. It utilizes Oracle Data Masking Pack and Oracle Enterprise Manager to obscure sensitive Oracle E-Business Suite information as it is copied from production to nonproduction environments. Specifically, you can

  • Deidentify data. Scramble personally identifiable information, such as name, account number, address, location, and driver's license number.

  • Mask sensitive data. Mask data that, if associated with personally identifiable information, would cause privacy concerns. Examples include compensation, health, and employment information.

  • Maintain data integrity. Ensure that masked data still enables a fully functional application.
Defense-in-Depth Security for Oracle E-Business Suite
Oracle E-Business Suite customers need to consider multiple layers of security to protect their sensitive data. In addition to Oracle Data Masking Pack, organizations can use Oracle Advanced Security to transparently encrypt sensitive Oracle E-Business Suite data, such as credit cards information, social security numbers, or personally identifiable information, by encrypting data at rest and whenever it leaves the database over the network or via backups.

Second, Oracle Database Vault adds additional layers of security for Oracle E-Business Suite customers by addressing regulatory mandates that call for separation-of-duties, least privilege, and other preventive controls to ensure data integrity and data privacy. Oracle Database Vault proactively protects application data stored in Oracle Database from being accessed by privileged database users.

Third, customers can reduce the cost and complexity of compliance, and the risk of insider threats, by automating the secure collection, consolidation, and reporting of Oracle E-Business Suite database audits using Oracle Audit Vault.

Finally, Oracle Database Firewall monitors Oracle E-Business Suite database activity on the network to help prevent unauthorized access, SQL injections, privilege or role escalation, and other external and internal attacks—all in real time.

To learn more, watch the Webcast "How Secure Is Your Oracle E-Business Suite Application Data?"


Back to Top
Oracle Information InDepth newsletters bring targeted news, articles, customer stories, and special offers to business people who want to find out how to streamline enterprise information management, measure results, improve business processes, and communicate a single truth to their constituents.

Please send questions or comments to newsletter_feedback_us@oracle.com.

For answers to questions about subscribing, unsubscribing, and managing your Oracle e-mail communications preferences, please see the Oracle E-Mail Communications page.

Copyright © 2012, Oracle Corporation and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

This document is provided for information purposes only, and the contents hereof are subject to change without notice. This document is not warranted to be error-free, nor is it subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. We specifically disclaim any liability with respect to this document, and no contractual obligations are formed either directly or indirectly by this document. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission.