Category Archives: Audit

#Oracle Database Application #Security book is finally out. #infosec #encryption #audit #SecureCoding #PrivilegeAnalysis #OID #OAM #OIM

Posted on November 6, 2019 by rlockard

https://www.amazon.com/Oracle-Database-Application-Security-Directory/dp/1484253663/ref=sr_1_1?keywords=oracle+database+lockard&qid=1573050833&sr=8-1 It’s been a year long process now the book is finally been released. There are a few things I would have written different and a few other subjects I would have liked to cover. Perhaps that will come in … Continue reading →

Posted in Audit, encryption, infosec, PL/SQL, Security, Trusted Path | Tagged Audit, database, Encryption, infosec, oracle, privilege analysis, secure coding, SecureCoding | Leave a comment

Five things that make me just want to scream. #Infosec

Posted on October 31, 2017 by rlockard

When evaluating the security of a database, and/or the security of an application, there are a few things that will make me start pounding my head against my desk. What prompted this? A customer asked me help evaluate a system … Continue reading →

Posted in Audit, Security | Leave a comment

Four things a DBA can do now to improve their #infosec posture?

Posted on July 9, 2016 by rlockard

August 13, 2018: NOTE UPDATE TO POST THIS IS SPECIFIC TO Oracle 12.1 and bellow. Oracle 12.2 and above, you can change an unencrypted tablespace to an encrypted tablespace. 1) When we start talking about securing information, the first thing that … Continue reading →

Posted in Audit, encryption, infosec, Security, Trusted Path, VPD | Tagged action, dba, infosec, oracle | Leave a comment