We’re sorry. We could not find a match for your search.

We suggest you try the following to help find what you're looking for:

  • Check the spelling of your keyword search.
  • Use synonyms for the keyword you typed, for example, try “application” instead of “software.”
  • Start a new search.
Contact Sales Sign in to Oracle Cloud
  1. Security
  2. Database Security

Oracle Database Vault

Oracle Database Vault implements data security controls within Oracle Database to restrict access to application data by privileged users. Reduce the risk of insider and outside threats and address compliance requirements, including separation of duties.

Watch the Database Vault video (7:45)

On-demand webinar: Database Vault Deployment Strategies

Oracle Database security experts provide strategies for deploying and managing Database Vault, including how to minimize downtime and control operational risk.

Explore Oracle Database Vault

Database Vault realms

Block unauthorized access to sensitive data by creating restricted application environments within Oracle Database. Oracle Database Vault security controls also help organizations address compliance with data privacy laws and standards such as the European Union General Data Protection Regulation (EU GDPR), the Payment Card Industry Data Security Standard (PCI-DSS), and numerous other regulations that require strong internal controls on access, disclosure, or modifications to sensitive information.


Database Vault command rules

Prevent malicious or accidental changes that disrupt operations by privileged user accounts. Command controls prevent unauthorized commands such as DROP TABLE or ALTER SYSTEM outside of specific maintenance windows.


Database Vault trusted paths

Use factors like client IP address, program, username, and time of day to enforce zero trust access to data and data operations. Since an attacker can't simply use a stolen account to access sensitive data, Database Vault can block unauthorized access to sensitive data and generate high value alerts notifying administrators of suspicious data access activity to help stop data theft before it happens.


Separation of duties

Enforce checks and balances on privileged users, preventing attackers from disabling security controls, creating rogue users, and accessing sensitive data by leveraging credentials from a single privileged account.


Integrated, performant, and scalable

Secure new and existing Oracle Database environments without the need for costly and time-consuming application changes. Database Vault is compatible with enterprise architectures, including Oracle Real Application Clusters (RAC), Oracle GoldenGate, and Oracle Data Guard, all without the need to deploy additional servers and agents.


Oracle Database Vault use cases

  • Protect sensitive data

    Block attackers from accessing sensitive data with stolen privileged user credentials—the most common attack vector today.

  • Prevent inadvertent access

    Block accidental access by database administrators to sensitive data without compromising their ability to perform necessary tasks.

  • Prevent unauthorized database changes

    Block accidental or malicious changes to production databases and restrict authorized changes to defined maintenance periods.

  • Enforce policy-based access control

    Prevent misuse of privileged credentials outside allowed IP address, time of day, client programs, and more.

  • Separation of duties

    Define and separate roles for security and administration so administrators can’t modify security policies or access sensitive data.

Resources

customer community

AskTOM Oracle Database Security Office Hours

AskTOM Office Hours offers free, open Q&A sessions with Oracle Database experts who are eager to help you fully leverage the multitude of enterprise-strength database security tools available to your organization.

cloud learning

LiveLabs Workshop: Oracle Database Vault

This workshop introduces Oracle Database Vault's features and functionality. Explore how to configure Database Vault to protect databases and the sensitive data contained therein with features like realms and trusted paths. Run this workshop on your own tenancy or reserve a time to run the workshop on LiveLabs, free of charge.

related content

Related content

You may also be interested in

Technical report

Learn more about Database Vault

Datasheet

Features, benefits and more

Frequently asked questions

Get the answers

Oracle database security

Learn about more security solutions

Get started


Run the Database Security Assessment Tool

Quickly identify your database security posture and get recommendations to mitigate risks.

Download for free

Try Oracle Autonomous Database

Try Autonomous Database with tools such as Oracle Application Express and Oracle SQL Developer.

Start for free

Contact sales

Interested in learning more? Contact one of our industry-leading experts.

Get in touch