oracle experts. A.
My client wants to deploy an application that should contain credit card numbers in the database. Obviously, the customer is interested in security.
We particularly agree with one painful problem. How can we make sure that only authorized users with "business information" are allowed access to the data? How can we protect data from the database administrator?
One obvious solution is application level encryption. We do not want to do this.
The oracle product that has emerged as a possible solution is Orace TDE (transparent data encryption). It seems like this is good for disk encryption. However, there are controversial claims if they can be used to hide data from someone with database administrator privileges.
I want to be very specific in the case of the use with which we are dealing. We have a running application, 24/7/365, which constantly works with access to data. This means that the Oracle wallet is open and the data is decrypted in the database. At the same time, the database administrator still cannot access the data.
I know that Oracle is selling Oracle Database Vault for this very problem. Given that all I want to do is block access to the DBA database from one specific table, do I really need storage or can I use TDE?
Help would be greatly appreciated
or
source
share