Category Archives: Security

OTN Two Minute Tech Tip – SYS_CONTEXT to help secure your database

Posted on April 1, 2015 by rlockard

My Two minute tech tip with OTN on using sys_context to help you secure your database. We can use the values returned from sys_context along with Virtual Private Databases, Fine Grained Auditing, and Redaction to lock down the sensitive data.

Posted in Database Stuff, Security | Leave a comment

#infosec #encrypt backups with #rman

Posted on March 25, 2015 by rlockard

Why should you encrypt your backups? Why should you test your backups? I will be speaking on Holistic Database Security at #kscope15 and #harmony15

Posted in Database Stuff, Security | Tagged infosec, oracle, rman | Leave a comment

#infosec #Oracle data #redaction

Posted on March 23, 2015 by rlockard

I had a rather disturbing conversion with my wife a couple nights ago, she had called a service provider to discuss a bill. The customer service rep asked her for her social security number to verify her identity. When my … Continue reading →

Posted in Database Stuff, Security | Tagged infosec, oracle, redaction | Leave a comment

#Infosec

Posted on March 4, 2015 by rlockard

I recently have been receiving emails for consulting work. This is a good thing because I’m back on the market. However; some of the emails I have been receiving are asking for PII. This information can be used for identity … Continue reading →

Posted in Security | Tagged Identity Theft, infosec | Leave a comment

Encrypt those backups

Posted on April 5, 2013 by rlockard

April 2005 Ameratrade loses a backup tape containing information on 200,000 customers. February 2005 Bank of America loses backup tapes containing information on 1.2 million charge cards. September 2011, SAIC loses backup tapes of 4.9 Million members of the military … Continue reading →

Posted in Security | Tagged Encryption, infosec, Security | Leave a comment

Encrypt those backups

Posted on August 2, 2012 by rlockard

Posted in Database Stuff, Security | Tagged #infosec #oracle #encryption | Leave a comment

Security in the Cloud. Install #1

Posted on August 1, 2012 by rlockard

There are a number of different vendors providing cloud services. You can buy space and processing power from vendors like IBM, or Amazon or many other service providers. In the interest of full disclosure, I use cloud services all the … Continue reading →

Posted in Database Stuff, Security | Tagged #infosec #cloud | Leave a comment

Social engineering does happen.

Posted on July 19, 2012 by rlockard

There have been a few times where social engineering was attempted with one of my customers. Sometimes I wind up taking the phone call after someone calls the help desk looking for some information we would not normally give out. … Continue reading →

Posted in Security | Tagged #infosec #socialengineering | Leave a comment

PII is valuable to criminals

Posted on July 19, 2012 by rlockard

The theft of PII is no longer relegated to petty criminals and hackers; it is now organized crime rings that are targeting PII and selling it on the back market. Some nations even tolerate criminal hacking to steel PII as … Continue reading →

Posted in Security | Tagged #infosec #pii | Leave a comment

If you don’t measure it, you can’t protect it

Posted on July 19, 2012 by rlockard

have always felt safe in my home until a few days ago I had locked myself out of my house. I spent about 30 minutes looking for a spare house key my wife may have left in a car that … Continue reading →

Posted in Security | Leave a comment