Presentation is loading. Please wait.

Presentation is loading. Please wait.

11 Copyright © 2004, Oracle. All rights reserved. Oracle Database Security.

Published byAlvin Peters Modified over 9 years ago

Similar presentations

Presentation on theme: "11 Copyright © 2004, Oracle. All rights reserved. Oracle Database Security."— Presentation transcript:

1 11 Copyright © 2004, Oracle. All rights reserved. Oracle Database Security

2 11-2 Copyright © 2004, Oracle. All rights reserved. Objectives After completing this lesson you should be able to do the following: Apply the principal of least privilege Manage default user accounts Implement standard password security features Audit database activity

3 11-3 Copyright © 2004, Oracle. All rights reserved. Database Security A secure system ensures the confidentiality of the data it contains. There are several aspects of security: Restricting access to data and services Authenticating users Monitoring for suspicious activity

4 11-4 Copyright © 2004, Oracle. All rights reserved. Database Security Full Notes Page

5 11-5 Copyright © 2004, Oracle. All rights reserved. Apply the Principle of Least Privilege Protect the data dictionary Revoke unnecessary privileges from PUBLIC Restrict the directories accessible by users Limit users with administrative privileges Restrict remote database authentication

6 11-6 Copyright © 2004, Oracle. All rights reserved. Protect the Data Dictionary Protect the data dictionary by ensuring the following initialization parameter is set to FALSE: This configuration prevents users with ANY TABLE system privileges from accessing data dictionary base tables. A FALSE setting also prevents user SYS from logging in as anything other than SYSDBA The default value of this parameter is FALSE. If you find it set to TRUE, ensure there is a good business reason. O7_DICTIONARY_ACCESSIBILITY = FALSE

7 11-7 Copyright © 2004, Oracle. All rights reserved. Revoke Unnecessary Privileges from PUBLIC Revoke all unnecessary privileges and roles from the database server user group PUBLIC. Many built-in packages grant EXECUTE to PUBLIC. Execute on the following packages should usually be revoked from PUBLIC: – UTL_SMTP – UTL_TCP – UTL_HTTP – UTL_FILE – DBMS_OBFUSCATION_TOOLKIT Example: SQL> REVOKE execute ON utl_file FROM PUBLIC;

8 11-8 Copyright © 2004, Oracle. All rights reserved. Revoke Unnecessary Privileges from PUBLIC - Full Notes Page

9 11-9 Copyright © 2004, Oracle. All rights reserved. Restrict the Operating System Directories Accessible by the User The UTL_FILE_DIR configuration parameter: Designates which directories are available for PL/SQL file I/O Enables database users to read or write from the listed directories on the database server

10 11-10 Copyright © 2004, Oracle. All rights reserved. Limit Users with Administrative Privileges Restrict the following types of privileges: –Grants of system and object privileges – SYS -privileged connections: SYSDBA and SYSOPER –DBA-type privileges, such as DROP ANY TABLE –Run-time permissions Example: List all users with the DBA role: SQL> SELECT grantee FROM dba_role_privs 2 WHERE granted_role = 'DBA'; GRANTEE ------------------------------ SYS SYSTEM

11 11-11 Copyright © 2004, Oracle. All rights reserved. Disable Remote Operating System Authentication Remote authentications should be used only when you trust all clients to appropriately authenticate users. Remote authentication process: –The database user is authenticated externally. –The remote system authenticates the user. –The user logs on to the database without further authentication. To disable, ensure that the following instance initialization parameter is at its default setting: REMOTE_OS_AUTHENT = FALSE

12 11-12 Copyright © 2004, Oracle. All rights reserved. Manage Default User Accounts DBCA expires and locks all accounts, except: – SYS – SYSTEM – SYSMAN – DBSNMP For a manually created database, lock and expire any unused accounts.

13 11-13 Copyright © 2004, Oracle. All rights reserved. User Password expiration and aging Password verification Setting up profiles Implement Standard Password Security Features Password history Account locking

14 11-14 Copyright © 2004, Oracle. All rights reserved. Password Account Locking ParameterDescription FAILED_LOGIN_ATTEMPTS Number of failed login attempts before lockout of the account PASSWORD_LOCK_TIME Number of days the account is locked after the specified number of failed login attempts

15 11-15 Copyright © 2004, Oracle. All rights reserved. Password Expiration and Aging ParameterDescription PASSWORD_LIFE_TIME Lifetime of the password in days after which the password expires PASSWORD_GRACE_TIME Grace period in days for changing the password after the first successful login after the password has expired

16 11-16 Copyright © 2004, Oracle. All rights reserved. Password History ParameterDescription PASSWORD_REUSE_TIME Number of days before a password can be reused PASSWORD_REUSE_MAX Number of password changes required before the current password can be reused

17 11-17 Copyright © 2004, Oracle. All rights reserved. Password Verification Password verification functions must: Be owned by the SYS user Return a Boolean value (true or false) ParameterDescription PASSWORD_VERIFY_ FUNCTION A PL/SQL function that makes a password complexity check before a password is assigned

18 11-18 Copyright © 2004, Oracle. All rights reserved. Supplied Password Verification Function: VERIFY_FUNCTION The supplied password verification function enforces password restrictions where the: Minimum length is four characters Password cannot be equal to username Password must have at least one alphabetic, one numeric, and one special character Password must differ from the previous password by at least three letters

19 11-19 Copyright © 2004, Oracle. All rights reserved. Creating a Password Profile

20 11-20 Copyright © 2004, Oracle. All rights reserved. Assigning Users to a Password Profile

21 11-21 Copyright © 2004, Oracle. All rights reserved. Monitoring for Suspicious Activity Monitoring or auditing should be an integral part of your security procedures. Oracle’s built-in audit tools include: Database auditing Value-based auditing Fine-grained auditing (FGA)

22 11-22 Copyright © 2004, Oracle. All rights reserved. Audit Tool Comparisons Type of AuditWhat Is Audited?What Is in the Audit Trail? Standard database auditing Privilege use including object access Fixed set of data Value-based auditing Data changed by DML statements Administrator defined Fine-grained auditing (FGA) SQL statements (insert, update, delete, and select) based on content Fixed set of data including the SQL statement

23 11-23 Copyright © 2004, Oracle. All rights reserved. Standard Database Auditing Enabled through the AUDIT_TRAIL parameter NONE : Disables collection of audit records DB : Enables auditing with records stored in the database OS : Enables auditing with records stored in the operating system audit trail Can audit: Login events Exercise of system privileges Exercise of object privileges Use of SQL statements

24 11-24 Copyright © 2004, Oracle. All rights reserved. Specifying Audit Options SQL statement auditing System privilege auditing (nonfocused and focused) Object privilege auditing (nonfocused and focused) Session auditing AUDIT select any table, create any trigger; AUDIT select any table BY hr BY SESSION; AUDIT table; AUDIT ALL on hr.employees; AUDIT UPDATE,DELETE on hr.employees BY ACCESS; AUDIT session whenever not successful;

25 11-25 Copyright © 2004, Oracle. All rights reserved. Specifying Audit Options Full Notes Page

26 11-26 Copyright © 2004, Oracle. All rights reserved. Data Dictionary View ALL_DEF_AUDIT_OPTS DBA_STMT_AUDIT_OPTS DBA_PRIV_AUDIT_OPTS DBA_OBJ_AUDIT_OPTS Description Default audit options Statement auditing options Privilege auditing options Schema object auditing options Viewing Auditing Options

27 11-27 Copyright © 2004, Oracle. All rights reserved. Audit trail Parameter file Specify audit options Generate audit trail Review audit information Standard Database Auditing DBAUser Enable database auditing executes command Database OS audit trail Audit options Server process

28 11-28 Copyright © 2004, Oracle. All rights reserved. Audit Trail View DBA_AUDIT_TRAIL DBA_AUDIT_EXISTS DBA_AUDIT_OBJECT DBA_AUDIT_SESSION DBA_AUDIT_STATEMENT Description All audit trail entries Records for AUDIT EXISTS/NOT EXISTS Records concerning schema objects All connect and disconnect entries Statement auditing records Viewing Auditing Results

29 11-29 Copyright © 2004, Oracle. All rights reserved. Value-Based Auditing User’s change is made Trigger firesAudit record is created by trigger And inserted into an audit trail table User makes change

30 11-30 Copyright © 2004, Oracle. All rights reserved. Value-Based Auditing Full Notes Page

31 11-31 Copyright © 2004, Oracle. All rights reserved. Fine-Grained Auditing (FGA) Monitors data access based on content Audits SELECT or INSERT,UPDATE,DELETE Can be linked to a table or view May fire a procedure Is administered with the DBMS_FGA package employees Policy: AUDIT_EMPS_SALARY SELECT name, salary FROM employees WHERE department_id = 10;

32 11-32 Copyright © 2004, Oracle. All rights reserved. FGA Policy dbms_fga.add_policy ( object_schema=> 'hr', object_name=> 'employees', policy_name=> 'audit_emps_salary', audit_condition=>'dept_id=10', audit_column=> 'salary', handler_schema=> 'secure', handler_module=> 'log_emps_salary', enable=> TRUE, statement_types=>'select' ); SELECT name, job_id FROM employees; SELECT name, salary FROM employees WHERE department_id = 10; SECURE.LOG_ EMPS_SALARY employees Defines: –Audit criteria –Audit action Is created with DBMS_FGA.ADD_POLICY

33 11-33 Copyright © 2004, Oracle. All rights reserved. FGA Policy dbms_fga.add_policy ( object_schema=> 'hr', object_name=> 'employees', policy_name=> 'audit_emps_salary', audit_condition => 'department_id = 10', audit_column=> 'salary', handler_schema=> 'secure', handler_module=> 'log_emps_salary', enable=> TRUE ); SELECT name, salary FROM employees; SELECT name, salary FROM employees WHERE department_id = 10; SECURE.LOG_ EMPS_SALARY employees Defines –Audit criteria –Audit action Is created with DBMS_FGA.ADD_POLICY

34 11-34 Copyright © 2004, Oracle. All rights reserved. DBMS_FGA Package Use DBMS_FGA to maintain FGA policies Grant the execute privilege only to administrators Includes the following subprograms: SubprogramDescription ADD_POLICY Creates an audit policy using the supplied predicate as the audit condition DROP_POLICY Drops an audit policy ENABLE_POLICY Enables an audit policy DISABLE_POLICY Disables an audit policy

35 11-35 Copyright © 2004, Oracle. All rights reserved. Enabling and Disabling an FGA Policy Enable a policy: Disable a policy: dbms_fga.enable_policy ( object_schema => 'hr', object_name => 'employees', policy_name => 'audit_emps_salary' ); dbms_fga.disable_policy ( object_schema => 'hr', object_name => 'employees', policy_name => 'audit_emps_salary' );

36 11-36 Copyright © 2004, Oracle. All rights reserved. Dropping an FGA Policy SQL> EXEC dbms_fga.drop_policy ( - > object_schema => 'hr', - > object_name => 'employees', - > policy_name => 'audit_emps_salary'); PL/SQL procedure successfully completed. SQL>

37 11-37 Copyright © 2004, Oracle. All rights reserved. Triggering Audit Events The following SQL statements cause an audit: The following statement does not cause an audit: SELECT count(*) FROM hr.employees WHERE department_id = 10 AND salary > v_salary; SELECT salary FROM hr.employees; SELECT last_name FROM hr.employees WHERE department_id = 10;

38 11-38 Copyright © 2004, Oracle. All rights reserved. Data Dictionary Views View NameDescription DBA_FGA_AUDIT_TRAIL All FGA events ALL_AUDIT_POLICIES All FGA policies for objects the current user can access DBA_AUDIT_POLICIES All FGA policies in the database USER_AUDIT_POLICIES All FGA policies for objects in the current user schema

39 11-39 Copyright © 2004, Oracle. All rights reserved. DBA_FGA_AUDIT_TRAIL SQL> SELECT to_char(timestamp, 'YYMMDDHH24MI') 2 AS timestamp, 3 db_user, 4 policy_name, 5 sql_bind, 6 sql_text 7 FROM dba_fga_audit_trail; TIMESTAMP DB_USER POLICY_NAME SQL_BIND ---------- ------- ----------------- ---------- SQL_TEXT ----------------------------------------------- 0201221740 SYSTEM AUDIT_EMPS_SALARY #1(4):1000 SELECT count(*) FROM hr.employees WHERE department_id = 10 AND salary > :b1

40 11-40 Copyright © 2004, Oracle. All rights reserved. DBA_FGA_AUDIT_TRAIL SQL> SELECT to_char(timestamp, 'YYMMDDHH24MI') 2 AS timestamp, 3 db_user, 4 policy_name, 5 sql_bind, 6 sql_text 7 FROM dba_fga_audit_trail; TIMESTAMP DB_USER POLICY_NAME SQL_BIND ---------- ------- ----------------- ---------- SQL_TEXT ----------------------------------------------- 0201221740 SYSTEM AUDIT_EMPS_SALARY #1(4):1000 SELECT count(*) FROM hr.employees WHERE department_id = 10 AND salary > :b1

41 11-41 Copyright © 2004, Oracle. All rights reserved. FGA Guidelines To audit all statements, use a null condition. If you try to add a policy that already exists, error ORA-28101 is raised. The audited table or view must already exist when you create the policy. If the audit condition syntax is invalid, an ORA- 28112 is raised when the audited object is accessed. If the audit column does not exist in the table, no rows are audited. If the event handler does not exist, no error is returned and the audit records is still created.

42 11-42 Copyright © 2004, Oracle. All rights reserved. FGA Guidelines Full Notes Page

43 11-43 Copyright © 2004, Oracle. All rights reserved. Auditing SYSDBA and SYSOPER Users User’s with SYSDBA or SYSOPER privileges can be connecting with the database closed. Audit trail must be stored outside of the database. Connect as SYSDBA or SYSOPER is always audited. Enable additional auditing of SYSDBA or SYSOPER actions with audit_sys_operations. Control audit trail with audit_file_dest. Default is: – $ORACLE_HOME/rdbms/audit (UNIX/Linux) –Windows Event Log (Windows)

44 11-44 Copyright © 2004, Oracle. All rights reserved. Security Updates Oracle posts security alerts on the Oracle Technology Network Web site at: http://otn.oracle.com/deploy/security/alerts.htm Oracle database administrators and developers can also subscribe to be notified about critical security alerts via e-mail by clicking the “Subscribe to Security Alerts Here” link.

45 11-45 Copyright © 2004, Oracle. All rights reserved. Summary In this lesson you should have learned how to: Apply the principal of least privilege Manage default user accounts Implement standard password security features Audit database activity

46 11-46 Copyright © 2004, Oracle. All rights reserved. Practice 11-1 Overview: Database Security (Part 1) Tasks: Prevent the use of simple passwords Force accounts to lock for 10 minutes after four failed login attempts Exempt the application server login from forced password changes Audit unsuccessful attempts to connect to the database

47 11-47 Copyright © 2004, Oracle. All rights reserved. Practice Lesson 11 (Part 1) Full Notes Page

48 11-48 Copyright © 2004, Oracle. All rights reserved. Practice Lesson 11 (Part 1) (continued) Full Notes Page

49 11-49 Copyright © 2004, Oracle. All rights reserved. Practice 11-2 Overview: Database Security (Part 2) Tasks: Audit select on the SALARY column of the EMPLOYEES table Audit changes to the SALARY column of the EMPLOYEES table, capture: –Old value –New value –User who made the change –What location the change was made from

50 11-50 Copyright © 2004, Oracle. All rights reserved. Practice Lesson 11 (Part 2) Full Notes Page

Download ppt "11 Copyright © 2004, Oracle. All rights reserved. Oracle Database Security."

Similar presentations

Password Management for Oracle8 Ari Kaplan Independent Consultant.

Password Management for Oracle8 Ari Kaplan Independent Consultant.
Module 12: Auditing SQL Server Environments

Module 12: Auditing SQL Server Environments
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 8 Application Data Auditing.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 8 Application Data Auditing.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 8 Application Data Auditing.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 8 Application Data Auditing.
1 Auditing the DBA: What non-technical managers and auditors should know. Presented By Cam Larner Cam Larner President President Absolute Technologies,

1 Auditing the DBA: What non-technical managers and auditors should know. Presented By Cam Larner Cam Larner President President Absolute Technologies,
GOLD SILVER BRONZE. © CGI Group Inc. 2014 Oracle Auditing COUG Presentation – June 19, 2014 Ray Smith June 2014.

GOLD SILVER BRONZE. © CGI Group Inc Oracle Auditing COUG Presentation – June 19, 2014 Ray Smith June 2014.
Oracle 10g Database Administrator: Implementation and Administration

Oracle 10g Database Administrator: Implementation and Administration
Understand Database Security Concepts

Understand Database Security Concepts
Oracle9i Database Administrator: Implementation and Administration 1 Chapter 12 System and Object Privileges.

Oracle9i Database Administrator: Implementation and Administration 1 Chapter 12 System and Object Privileges.
Chapter 9 Auditing Database Activities

Chapter 9 Auditing Database Activities
System Administration Accounts privileges, users and roles

System Administration Accounts privileges, users and roles
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
Chapter 7 Database Auditing Models

Chapter 7 Database Auditing Models
Administering User Security

Administering User Security
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 6 Virtual Private Databases.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 6 Virtual Private Databases.
Database Security Managing Users and Security Models.

Database Security Managing Users and Security Models.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
10 Copyright © 2005, Oracle. All rights reserved. Implementing Oracle Database Security.

10 Copyright © 2005, Oracle. All rights reserved. Implementing Oracle Database Security.
Adapted from Afyouni, Database Security and Auditing DB Auditing Examples (Ch. 9) Dr. Mario Guimaraes.

Adapted from Afyouni, Database Security and Auditing DB Auditing Examples (Ch. 9) Dr. Mario Guimaraes.
Adapted from Afyouni, Database Security and Auditing Database Application Auditing – Ch. 8.

Adapted from Afyouni, Database Security and Auditing Database Application Auditing – Ch. 8.

Similar presentations

Ads by Google