Oracle Information InDepth



Stay Connected:

Oracle on Twitter Oracle on Facebook Oracle on Youtube Oracle Blog

November 2012

Subscribe Forward

Back to the main page

Regulatory Pressures Drive Demand for Solutions That Demonstrate Compliance

Industry and government security regulations are continually putting pressure on organizations to demonstrate compliance—from the Payment Card Industry (PCI) Data Security Standards to HIPAA’s Health Information Technology for Economic and Clinical Health (HITECH) Act.

"It is increasingly vital for organizations to know who has access to what, whether that access is appropriate, and that sensitive data is secure," explains Vipin Samar, vice president, Oracle Database Security. “And from a compliance perspective, it’s equally important that organizations are able to prove that appropriate access and data security controls are in place.”

To manage these challenges, organizations need a partner that can provide a comprehensive and in-depth set of solutions that navigate a clear path to demonstrating compliance.

Protecting Data at the Source
Oracle provides a comprehensive portfolio of security solutions that ensure data privacy, protect against insider threats, and enable regulatory compliance for both Oracle and non-Oracle databases.

The strategy focuses on securing data at the source—the database. A good place to start is encrypting data without impacting applications. Oracle Advanced Security encrypts sensitive data stored in Oracle Databases and requires no changes to applications. Data is automatically encrypted when it is written to disk and automatically decrypted when accessed by the application. Hear how Oracle customers use transparent data encryption to help address regulatory compliance.

Security Inside Out: Managing Privileged Users
In addition to encryption, a cornerstone of Oracle's strategy is the defense against improper access by privileged users. Oracle Database Vault helps organizations increase the security of existing applications and address regulatory mandates that call for separation of duties, least privilege, and other preventive controls to ensure data integrity and data privacy.

Organizations must also put in place detective measures. This includes monitoring audit data and SQL-language traffic across both Oracle and non-Oracle databases to detect threats and ensure compliance. To reduce the cost and complexity of this potentially burdensome process, Oracle Audit Vault automates the collection and consolidation of database audit trails. It provides a secure and highly scalable audit warehouse for simplified reporting, analysis, and threat detection. Oracle Database Firewall monitors database activity on the network to help prevent unauthorized access, SQL injections, privilege or role escalation, and other external and internal attacks—all in real time.

To learn more about Oracle Database security and compliance solutions and to see how your organization measures up, read the latest information and take the online enterprise data security assessment.

Back to Top

Please send questions or comments to

This document is provided for information purposes only, and the contents hereof are subject to change without notice. This document is not warranted to be error-free, nor is it subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. We specifically disclaim any liability with respect to this document, and no contractual obligations are formed either directly or indirectly by this document. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission.

Hardware and Software, Engineered to Work Together

Copyright © 2012, Oracle and/or its affiliates.
All rights reserved.

Contact Us | Legal Notices and Terms of Use | Privacy Statement


Oracle Corporation - Worldwide Headquarters, 500 Oracle Parkway, OPL - E-mail Services, Redwood Shores, CA 94065, United States

Your privacy is important to us. You can login to your account to update your e-mail subscriptions or you can opt-out of all Oracle Marketing e-mails at any time.

Please note that opting-out of Marketing communications does not affect your receipt of important business communications related to your current relationship with Oracle such as Security Updates, Event Registration notices, Account Management and Support/Service communications.