Data Encryption [message #583112] |
Fri, 26 April 2013 00:04 |
ishika_20
Messages: 339 Registered: December 2006 Location: delhi
|
Senior Member |
|
|
Dear All,
Our client is having requirements that data should be encrypted through-out the process (from transaction level to backup level).
Requirements are as below -
1) Data should be encrypted and can be access only through application (through front end).
2) Even if pl/sql, sql installed, developer user cannot able to fetch data from database.
3) Even DBA, should not have access to fetch the data from the database.
4) Only assigned DBA, should fetch details from database (provided he/she should have details of database as well as application's user / password).
5) It should be restricted by ip and user details (such as ip of application server with user/password of user).
6) Changes should be purely done from database level only.
I know, you might ask..DBA role always have all the permission to fetch the data.
Can we able to fulfill the requirements?
Need your valuable feedback on this.
Regards,
Ishika
|
|
|
Re: Data Encryption [message #583120 is a reply to message #583112] |
Fri, 26 April 2013 01:05 |
|
Michel Cadot
Messages: 68665 Registered: March 2007 Location: Nanterre, France, http://...
|
Senior Member Account Moderator |
|
|
1) Application encryption
2) No privileges
3) Database Vault / Application encryption
4) Application encryption, access only through the application / Database Vault
5) Views / VPD
6) Only read privileges through application
Globally the requirements are conflicting; compare 1) and 6) (assuming "from database level only" means "out of the application" as, anyway, modifications are made only at the database level).
Regards
Michel
[Updated on: Fri, 26 April 2013 01:14] Report message to a moderator
|
|
|
Re: Data Encryption [message #583166 is a reply to message #583120] |
Fri, 26 April 2013 08:07 |
ishika_20
Messages: 339 Registered: December 2006 Location: delhi
|
Senior Member |
|
|
Dear Michel,
You are correct. I have to come back to you after having one more round of discussion.
Thanks for your valuable feedback.
Regards,
Ishika
|
|
|
|
|
|