Oracle Information InDepth



Stay Connected

Database Security

Oracle on Twitter Oracle on Facebook Oracle Blog

Identity Management

Oracle Identity Management on Twitter Oracle Identity Management on Facebook Oracle Blog 

October 2013

Subcribe Subscribe Share Forward

Back to the main page

Securing Oracle Database 12c: A Technical Primer

The new multitenant architecture of Oracle Database 12c represents a complete shift in database technology—and it calls for adopting an updated approach to database security as well.

In response, Oracle security experts have written a new book that is expected to become a key resource for database administrators. Written by Oracle's Paul Needham and Scott Rotondo, along with Independent Oracle Users Group President Michelle Malcher, Securing Oracle Database 12c: A Technical Primer, will be available for download starting in December 2013. For a limited time, Oracle Press will provide complimentary copies. Register now to secure your free copy.

New Challenges, New Tools
"As data volumes soar within multitenant environments, they are sure to be targeted by both hackers and insiders—and scrutinized by auditors more than ever,” says Vipin Samar, vice president, database security product development, Oracle. “It’s imperative that customers take advantage of the new security capabilities in Oracle Database 12c to protect their data and database infrastructure.”

The new book provides practical insight into new capabilities that help customers mitigate risks and address compliance requirements, including

  • Data redaction. Data redaction complements transparent data encryption technology by ensuring that sensitive data is not exposed to users of current applications by conditionally redacting sensitive data in the outgoing result.
  • Privilege analysis. Part of Oracle Database Vault, privilege analysis can harden database access by identifying users’ or applications’ unused privileges and roles based on the actual roles and privileges used at runtime on production servers.
  • Conditional auditing. A new auditing framework creates audit records based on the context of the database session, enabling highly selective and effective auditing.
  • Sensitive data discovery and management. Oracle Enterprise Manager’s data discovery and modeling capabilities facilitate the process of locating sensitive data within an application and applying security controls on that data.
  • Transparent sensitive data protection. Now you can load sensitive information from Oracle Enterprise Manager’s data discovery and modeling into Oracle Databases, even as you apply security controls such as data redaction—greatly reducing the operational burden of reliably managing sensitive data.
  • Real application security. The next-generation authorization framework supports increased application security requirements in multitenant environments by providing a declarative model that allows developers to define the data security policy based on application users, roles, and privileges.
Preregister now to download the e-book Securing Oracle Database 12c: A Technical Primer.
Back to Top

Please send questions or comments to

This document is provided for information purposes only, and the contents hereof are subject to change without notice. This document is not warranted to be error-free, nor is it subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. We specifically disclaim any liability with respect to this document, and no contractual obligations are formed either directly or indirectly by this document. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission.

Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners.

Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group.

Hardware and Software, Engineered to Work Together

Contact Us | Legal Notices and Terms of Use | Privacy

Oracle Corporation


Oracle Corporation - Worldwide Headquarters, 500 Oracle Parkway, OPL - E-mail Services, Redwood Shores, CA 94065, United States

Your privacy is important to us. You can login to your account to update your e-mail subscriptions or you can opt-out of all Oracle Marketing e-mails at any time.

Please note that opting-out of Marketing communications does not affect your receipt of important business communications related to your current relationship with Oracle such as Security Updates, Event Registration notices, Account Management and Support/Service communications.