Oracle’s Approach to Database Security

by Daniel L
Last week my blog post talked about McAfee’s database security offerings and how they were handling the security concerns of businesses.  Since database security is a key issue these days, especially with all these server breaches making the headlines, I wanted to cover another company’s approach at database security.  Oracle, the company known for its database management systems, has teamed up with F5 Networks to deliver a database firewall to the market.  Oracle is gearing this service to go up against database activity monitoring services offered by companies like Imperva and IBM.  The way the firewall works is by creating a barrier around the database, scrutinizing any of the SQL statements coming its way, ultimately determining if any immediate action should be taken to block the statement.  The firewall is capable of logging statements, sending out alerts if they are out of the ordinary, and it can even substitute SQL statements.  A company using the firewall can set up whitelist and blacklist policies which play the role of gatekeeper to the database.  Companies shouldn’t worry if they aren’t using a database system built by Oracle, the firewall is compatible with non-Oracle database platforms.  Moreover, Oracle and F5 have also developed a web application firewall.

Database security has piqued my interest over the course of these last few eventful months.  And the way I see it, the more the database security services there are, the better.  Although Oracle is hoping that its product will substitute the database activity monitors on the market, I believe their approach is a tad bit off.  They should find a way to coexist with DAMs, instead of out-right trying to replace them.  The more secure a database is, the safer the data associated with it, expunging the risk of a major catastrophe taking place.

Chickowski, E. (2011). Database firewall brouhaha*. InformationWeek, (1294), 38-38. Retrieved from http://search.proquest.com/docview/860133698?accountid=10357

1) Blog post took me around an hour.

2) I read 8 blog posts by my classmates this week (including ones that I quickly skimmed through to comment on)

3) Comments took me about 10 Minutes Each.