Oracle Database 11g R2: Encryption & Advanced Data Security (2.5 days)

Description

Threats to data security abound and are increasing in sophistication and frequency. Organizations have both an ethical and oftentimes a legal responsibility to understand the countermeasures available, to compare these against those threats to which they are exposed, and to properly apply such countermeasures.

This training course module considers how encryption technology should, and should not, be employed within an Oracle database environment in response to known threats and risks. It will also discuss other best security practices which pertain to application security, host system configuration and the database installation.

This textbook can be used for advanced self-study, or for instructor-led training in both in-class or virtual-class environments. Textbooks can also be used for ongoing reference long after the course is completed.

Audience

The primary target audiences for this course are:
• Database administrators
• Web server administrators
• System administrators
• Implementation specialists
• Data center support engineers
• Security administrators and compliance auditors

Prerequisites

The mandatory prerequisites for this course are these Sideris courses:
• ORACLE DATABASE 11G R2: SQL FUNDAMENTALS – COMPLETE LIBRARY
• ORACLE DATABASE 11G R2: PL/SQL FUNDAMENTALS – COMPLETE LIBRARY
• ORACLE DATABASE 11G R2: ADMINISTRATION I

Although not mandatory, another helpful prerequisite is
• ORACLE DATABASE 11G R2: ADVANCED PL/SQL PROGRAMMING & TUNING.

Instructor Resources

Instructor resources from the Sideris Training Portal combined with Sideris custom print courseware make distance-learning and virtual training more effective than ever! Available for download when you purchase this title. Please turn on your audio, make sure you have the latest version of Adobe Reader and then watch the demo to see how these new instructor resources improve your instructor’s presentations!

General Course Objectives

Within this training course guidebook we will discuss these topics:
• Consider examples of common security threats and sensitive data which might exist within an organization.
• Review the essentials of a sound and secure database installation.
• Consider known database security weaknesses and how these may be addressed.
• Consider examples of specific attacks which could be launched against individual components within a data center or within the public networks.
• Review the theory and concepts which underlie symmetric and asymmetric encryption.
• Consider the primary elements involved in asymmetric encryption, including private and public keys, the Public Key Infrastructure, certificates, Certificate Authorities and wallets.
• Discuss how symmetric or asymmetric encryption is applied to network traffic, database storage and external files.
• Consider the limits of encryption strategies and when encryption could be misapplied and counterproductive.
• Discuss the challenges and options available for encryption key storage.
• Apply Transparent Data Encryption (TDE) to tablespace, column, export file, RMAN backup set file and SecureFile LOB encryption.
• Use the Oracle Data Pump access driver to encrypt external tables.
• Configure Oracle Net Services to repel database attacks and implement advanced security using encrypted network communication.
• Implement an application-based encryption solution using the DBMS_CRYPTO() package.
• Review the types of attacks which can be launched using SQL injection, and which countermeasures should be applied to repel these.
• Implement enhanced application security using the Virtual Private Database (VPD) facility.

Download PDF outline here!