Re: Data Privacy, Auditing, Encryption Question

• From: "Dennis Williams" <oracledba.williams@xxxxxxxxx>
• To: kedeshpande@xxxxxxxxx
• Date: Thu, 18 May 2006 15:49:46 -0500

Kirti,

So they want something entirely outside Oracle that can track every single
action performed within Oracle, no matter what the access method? Wow, I'd
like to see that one as well.
   I'm assuming this is for SoX? If so, perhaps it might be better to ask
how others are complying with their SoX auditor requirements.
   Perhaps you could suggest that the security officer keep the SYS and
SYSTEM account passwords, and when a DBA needs to perform a task,
the security officer temporarily changes the password and then sits behind
the DBA to verify he/she is only performing the authorized tasks.

Dennis Williams

• Follow-Ups:
  • Re: Data Privacy, Auditing, Encryption Question
    • From: Kirtikumar Deshpande

• References:
  • Data Privacy, Auditing, Encryption Question
    • From: Kirtikumar Deshpande

Other related posts:

• » Data Privacy, Auditing, Encryption Question
• » Re: Data Privacy, Auditing, Encryption Question
• » RE: Data Privacy, Auditing, Encryption Question
• » Re: Data Privacy, Auditing, Encryption Question
• » RE: Data Privacy, Auditing, Encryption Question
• » Re: Data Privacy, Auditing, Encryption Question

1. Home
2. oracle-l
3. Archive
4. 05-2006

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---