SlideShare ist ein Scribd-Unternehmen logo

An additional security layer in autonomous data warehouse cloud service

T
Thomas Teske

Secure your data Next to all you've seen: make your policies for data usage aware of the context (who, when, why, how, .. ) fully context-aware. Stop leaving wide gaps in access rules. Define them once, change them - but all in ONE place for now and the future of your data. Note: an updated version of this document has been published here on June 27th 2018 that is METADATA driven. It includes all scripts.

Technologie
1 von 8
Downloaden Sie, um offline zu lesen
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL Securing your data in Oracle Autonomous Data Warehouse Cloud Service Say “Hello” to virtual private database in the cloud by Thomas Teske, Oracle, June 1st 2018 Introduction: Security matters to everyone. All cloud vendors strive for the security protection levels for the cloud infrastructure, the service instances, data transfers and proper role based access controls. See the following report for a recent security document by kuppingercole. It is online available at http://www.oracle.com/us/products/database/kuppingercole-autonomous-database-4368706.pdf This document shall trigger your thoughts, turn your wants into actionable sprints delivering actionable code. Just code it … Is your data secure within your application or analytics? Within an application or analytics service it is equally important to be context aware. Who is allowed to perform which operation on which subset of data? Under which circumstances is in allowed? If it is allowed: is it in six month also OK for your auditor? Thus: always enforce access rules and monitor them and analysis the monitored usage. Otherwise you don’t know, what is going on. Any modern security operations center works on such principles. • You might want to define, which user is allowed to work with data entities and the allowed actions. • On top of that you want to constrain all application users as follows: no one shall see the PII relevant attributes – in our example: name, address, city, phone-number are shown but they remain empty. • Some users might not even be allowed to see the country nor regional information in our example: nation and region are shown but they remain empty. • Responsibilities of users might restrict them to work only with a subset of the data - in our example: we only allow some users working with data for AMERICA and MIDDLE- EAST. All data shown here is synthetic data. The Oracle Autonomous Data Warehouse cloud service (ADWC) comes with a great resource: the SSB schema for testing. It is populated with a simple data model about customers, business dates, products, suppliers and orderliness referring to them. ADWC is described at https://cloud.oracle.com/en_US/datawarehouse
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL Example shown here: To make it simple: we just take a copy of the CUSTOMER information in the sample SSB schema having 99 records. We define four users: • ADMIN – owns the CUSTOMER data with 99 records & provides access rights to the other users. • ALICE – is allowed to see all CUSTOMER records but not the PII relevant attributes • BOB - is allowed to see all CUSTOMER records but not the PII nor the geography relevant attributes • Charlie - is allowed to see all CUSTOMER records but not the PII nor the geography relevant attributes. Plus: Charlie is NOT allowed to see the data for AMERICA or MIDDLE EAST. How does this feel for them? See our simple example – screenshots taken of Oracle SQL Developer for the four users. User ADMIN – owns the CUSTOMER table having 99 records.
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL User ALICE – sees all customer records BUT not the PII relevant attributes User BOB – see all customer records but not the PII relevant attributes NOR the geography details
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL User CHARLIE – works for BOB and is not allowed to see two regions How is that achieved? Let us walk through it – step by step – all done by user ADMIN in our example. 1. Create some users and allow them having sessions in the database -- create three users create user alice identified by (some password); create user bob identified by (some password); create user charlie identified by (some password); -- allow them to create sessions grant CREATE SESSION to alice; grant CREATE SESSION to bob; grant CREATE SESSION to charlie; 2. Create a sample table and make its name globally accessible -- create a small demo table from SSB demo schema create table customer as select * from ssb.customer where rownum <= 100; create public synonym customer for admin.customer;
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL 3. Define simple functions to generate in Oracle additional SQL predicates that can’t be bypassed Note: these functions are the most simplistic implementations. For an enterprise grade application you will keep metadata entities that are queried by the functions instead of generating the SQL predicates statically. You will also put them into package() and wrap them to protect the code too. CREATE OR REPLACE FUNCTION hide_pii ( v_schema IN VARCHAR2, v_objname IN VARCHAR2) RETURN VARCHAR2 AS con VARCHAR2 (400); BEGIN -- return a predicate that allows only user ADMIN to conform for policies using it. con := 'SYS_CONTEXT(''USERENV'',''SESSION_USER'') = ''ADMIN'' '; RETURN (con); END hide_pii; a second one to hide the geography attributes CREATE OR REPLACE FUNCTION hide_geography ( v_schema IN VARCHAR2, v_objname IN VARCHAR2) RETURN VARCHAR2 AS con VARCHAR2 (400); BEGIN -- return a predicate that allows only users ADMIN and ALICE to conform for policies using it. con := 'SYS_CONTEXT(''USERENV'',''SESSION_USER'') in ( ''ADMIN'' , ''ALICE'' ) '; RETURN (con); END hide_geography;
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL and a third function to constrain by specific region CREATE OR REPLACE FUNCTION hide_some_regions ( v_schema IN VARCHAR2, v_objname IN VARCHAR2) RETURN VARCHAR2 AS con VARCHAR2 (400); BEGIN -- return a predicate that allows only users ADMIN and ALICE to conform for policies using it. con := 'SYS_CONTEXT(''USERENV'',''SESSION_USER'') in ( ''ADMIN'' , ''ALICE'' , ''BOB'') '; con := con || ' or not ( c_region in ( ''AMERICA'', ''MIDDLE EAST'' )) '; RETURN (con); END hide_some_regions; 4. Define policies to apply the functions on table CUSTOMER Note: these policies are applied specifically on table CUSTOMER but they could also be used to be applied for a set of entities. That is very practical to remain productive and reduce the number of potential gaps in your data protection. We have three policies to apply each of the functions defined in the previous step. All policies are applied in one go. You can enable/disable them, but disabling any single policy is highly discouraged. Code examples show always the DROP and then CREATE of a policy. If you change the code, it is very useful having these sniplets already available.
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL First policy: mask the PII attributes -- define a VPD policy to be in effect -- to not show the columns c_name, c_nation c_address and c_phone - just return NULLs. BEGIN DBMS_RLS.DROP_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_pii' ); END; BEGIN DBMS_RLS.ADD_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_pii', policy_function => 'hide_pii', sec_relevant_cols => 'c_name, c_city, c_address, c_phone', sec_relevant_cols_opt => dbms_rls.ALL_ROWS ); END; Second policy: mask the geography attributes BEGIN DBMS_RLS.DROP_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_geography' ); END; BEGIN DBMS_RLS.ADD_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_geography', policy_function => 'hide_geography', sec_relevant_cols => 'c_nation, c_region', sec_relevant_cols_opt => dbms_rls.ALL_ROWS ); END;
Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL Third policy: reduce the result set i.e. do not pass records as such BEGIN DBMS_RLS.DROP_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_rows_by_region' ); END; BEGIN DBMS_RLS.ADD_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_rows_by_region', policy_function => 'hide_some_regions', statement_types => 'select' ); END; 5. Provide access to the CUSTOMER table Only now you should provide access to the users. Otherwise you would have planned to constrain their data access, but enforced policies later. -- provide access to customer table to users grant select on customer to alice; grant select on customer to bob; grant select on customer to charlie; 6. That is all folks. Now you can start designing your own. Please note: all code is kept most simple and will definitely fail the strict coding guidelines by Steven Feuerstein. But you see, how it is done and can adapt as per your coding ethics, standards and security requirements.

Empfohlen

Artwork by Thomas Teske 2018
Artwork by Thomas Teske 2018Artwork by Thomas Teske 2018
Artwork by Thomas Teske 2018
Thomas Teske
 
Graph-Based Machine Learning for Automated Health Care Services
Graph-Based Machine Learning for Automated Health Care ServicesGraph-Based Machine Learning for Automated Health Care Services
Graph-Based Machine Learning for Automated Health Care Services
Thomas Teske
 
Fraud Detection in Financial Services using Graph Analysis and Machine Learning
Fraud Detection in Financial Services using Graph Analysis and Machine LearningFraud Detection in Financial Services using Graph Analysis and Machine Learning
Fraud Detection in Financial Services using Graph Analysis and Machine Learning
Thomas Teske
 
SOUG Day - autonomous what is next
SOUG Day - autonomous what is nextSOUG Day - autonomous what is next
SOUG Day - autonomous what is next
Thomas Teske
 
My artwork created in 2017
My artwork created in 2017My artwork created in 2017
My artwork created in 2017
Thomas Teske
 
My artwork created in 2016
My artwork created in 2016My artwork created in 2016
My artwork created in 2016
Thomas Teske
 
My artwork created in 2015
My artwork created in 2015My artwork created in 2015
My artwork created in 2015
Thomas Teske
 
My artwork created in 2014
My artwork created in 2014My artwork created in 2014
My artwork created in 2014
Thomas Teske
 

Empfohlen

Artwork by Thomas Teske 2018
Artwork by Thomas Teske 2018Artwork by Thomas Teske 2018
Artwork by Thomas Teske 2018
Thomas Teske
 
Graph-Based Machine Learning for Automated Health Care Services
Graph-Based Machine Learning for Automated Health Care ServicesGraph-Based Machine Learning for Automated Health Care Services
Graph-Based Machine Learning for Automated Health Care Services
Thomas Teske
 
Fraud Detection in Financial Services using Graph Analysis and Machine Learning
Fraud Detection in Financial Services using Graph Analysis and Machine LearningFraud Detection in Financial Services using Graph Analysis and Machine Learning
Fraud Detection in Financial Services using Graph Analysis and Machine Learning
Thomas Teske
 
SOUG Day - autonomous what is next
SOUG Day - autonomous what is nextSOUG Day - autonomous what is next
SOUG Day - autonomous what is next
Thomas Teske
 
My artwork created in 2017
My artwork created in 2017My artwork created in 2017
My artwork created in 2017
Thomas Teske
 
My artwork created in 2016
My artwork created in 2016My artwork created in 2016
My artwork created in 2016
Thomas Teske
 
My artwork created in 2015
My artwork created in 2015My artwork created in 2015
My artwork created in 2015
Thomas Teske
 
My artwork created in 2014
My artwork created in 2014My artwork created in 2014
My artwork created in 2014
Thomas Teske
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
Remote DBA Services
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
Remote DBA Services
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Juan lago vázquez
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
apidays
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
Andrey Devyatkin
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
Product Anonymous
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
Nanddeep Nachan
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
The Digital Insurer
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
Zilliz
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
Christopher Logan Kennedy
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
danishmna97
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
rafiqahmad00786416
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Edi Saputra
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
DianaGray10
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Deepika Singh
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
apidays
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Zilliz
 
2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
Expeed Software
 

Weitere ähnliche Inhalte

Kürzlich hochgeladen

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 

Kürzlich hochgeladen (20)

Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 

Empfohlen

How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 

Empfohlen (20)

2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
 
Product Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsProduct Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage Engineerings
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfAI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
 
Skeleton Culture Code
Skeleton Culture CodeSkeleton Culture Code
Skeleton Culture Code
 
PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024
 
Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)
 
How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search Intent
 
How to have difficult conversations
How to have difficult conversations How to have difficult conversations
How to have difficult conversations
 
Introduction to Data Science
Introduction to Data ScienceIntroduction to Data Science
Introduction to Data Science
 
Time Management & Productivity - Best Practices
Time Management & Productivity - Best PracticesTime Management & Productivity - Best Practices
Time Management & Productivity - Best Practices
 
The six step guide to practical project management
The six step guide to practical project managementThe six step guide to practical project management
The six step guide to practical project management
 
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
 

An additional security layer in autonomous data warehouse cloud service

  • 1. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL Securing your data in Oracle Autonomous Data Warehouse Cloud Service Say “Hello” to virtual private database in the cloud by Thomas Teske, Oracle, June 1st 2018 Introduction: Security matters to everyone. All cloud vendors strive for the security protection levels for the cloud infrastructure, the service instances, data transfers and proper role based access controls. See the following report for a recent security document by kuppingercole. It is online available at http://www.oracle.com/us/products/database/kuppingercole-autonomous-database-4368706.pdf This document shall trigger your thoughts, turn your wants into actionable sprints delivering actionable code. Just code it … Is your data secure within your application or analytics? Within an application or analytics service it is equally important to be context aware. Who is allowed to perform which operation on which subset of data? Under which circumstances is in allowed? If it is allowed: is it in six month also OK for your auditor? Thus: always enforce access rules and monitor them and analysis the monitored usage. Otherwise you don’t know, what is going on. Any modern security operations center works on such principles. • You might want to define, which user is allowed to work with data entities and the allowed actions. • On top of that you want to constrain all application users as follows: no one shall see the PII relevant attributes – in our example: name, address, city, phone-number are shown but they remain empty. • Some users might not even be allowed to see the country nor regional information in our example: nation and region are shown but they remain empty. • Responsibilities of users might restrict them to work only with a subset of the data - in our example: we only allow some users working with data for AMERICA and MIDDLE- EAST. All data shown here is synthetic data. The Oracle Autonomous Data Warehouse cloud service (ADWC) comes with a great resource: the SSB schema for testing. It is populated with a simple data model about customers, business dates, products, suppliers and orderliness referring to them. ADWC is described at https://cloud.oracle.com/en_US/datawarehouse
  • 2. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL Example shown here: To make it simple: we just take a copy of the CUSTOMER information in the sample SSB schema having 99 records. We define four users: • ADMIN – owns the CUSTOMER data with 99 records & provides access rights to the other users. • ALICE – is allowed to see all CUSTOMER records but not the PII relevant attributes • BOB - is allowed to see all CUSTOMER records but not the PII nor the geography relevant attributes • Charlie - is allowed to see all CUSTOMER records but not the PII nor the geography relevant attributes. Plus: Charlie is NOT allowed to see the data for AMERICA or MIDDLE EAST. How does this feel for them? See our simple example – screenshots taken of Oracle SQL Developer for the four users. User ADMIN – owns the CUSTOMER table having 99 records.
  • 3. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL User ALICE – sees all customer records BUT not the PII relevant attributes User BOB – see all customer records but not the PII relevant attributes NOR the geography details
  • 4. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL User CHARLIE – works for BOB and is not allowed to see two regions How is that achieved? Let us walk through it – step by step – all done by user ADMIN in our example. 1. Create some users and allow them having sessions in the database -- create three users create user alice identified by (some password); create user bob identified by (some password); create user charlie identified by (some password); -- allow them to create sessions grant CREATE SESSION to alice; grant CREATE SESSION to bob; grant CREATE SESSION to charlie; 2. Create a sample table and make its name globally accessible -- create a small demo table from SSB demo schema create table customer as select * from ssb.customer where rownum <= 100; create public synonym customer for admin.customer;
  • 5. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL 3. Define simple functions to generate in Oracle additional SQL predicates that can’t be bypassed Note: these functions are the most simplistic implementations. For an enterprise grade application you will keep metadata entities that are queried by the functions instead of generating the SQL predicates statically. You will also put them into package() and wrap them to protect the code too. CREATE OR REPLACE FUNCTION hide_pii ( v_schema IN VARCHAR2, v_objname IN VARCHAR2) RETURN VARCHAR2 AS con VARCHAR2 (400); BEGIN -- return a predicate that allows only user ADMIN to conform for policies using it. con := 'SYS_CONTEXT(''USERENV'',''SESSION_USER'') = ''ADMIN'' '; RETURN (con); END hide_pii; a second one to hide the geography attributes CREATE OR REPLACE FUNCTION hide_geography ( v_schema IN VARCHAR2, v_objname IN VARCHAR2) RETURN VARCHAR2 AS con VARCHAR2 (400); BEGIN -- return a predicate that allows only users ADMIN and ALICE to conform for policies using it. con := 'SYS_CONTEXT(''USERENV'',''SESSION_USER'') in ( ''ADMIN'' , ''ALICE'' ) '; RETURN (con); END hide_geography;
  • 6. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL and a third function to constrain by specific region CREATE OR REPLACE FUNCTION hide_some_regions ( v_schema IN VARCHAR2, v_objname IN VARCHAR2) RETURN VARCHAR2 AS con VARCHAR2 (400); BEGIN -- return a predicate that allows only users ADMIN and ALICE to conform for policies using it. con := 'SYS_CONTEXT(''USERENV'',''SESSION_USER'') in ( ''ADMIN'' , ''ALICE'' , ''BOB'') '; con := con || ' or not ( c_region in ( ''AMERICA'', ''MIDDLE EAST'' )) '; RETURN (con); END hide_some_regions; 4. Define policies to apply the functions on table CUSTOMER Note: these policies are applied specifically on table CUSTOMER but they could also be used to be applied for a set of entities. That is very practical to remain productive and reduce the number of potential gaps in your data protection. We have three policies to apply each of the functions defined in the previous step. All policies are applied in one go. You can enable/disable them, but disabling any single policy is highly discouraged. Code examples show always the DROP and then CREATE of a policy. If you change the code, it is very useful having these sniplets already available.
  • 7. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL First policy: mask the PII attributes -- define a VPD policy to be in effect -- to not show the columns c_name, c_nation c_address and c_phone - just return NULLs. BEGIN DBMS_RLS.DROP_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_pii' ); END; BEGIN DBMS_RLS.ADD_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_pii', policy_function => 'hide_pii', sec_relevant_cols => 'c_name, c_city, c_address, c_phone', sec_relevant_cols_opt => dbms_rls.ALL_ROWS ); END; Second policy: mask the geography attributes BEGIN DBMS_RLS.DROP_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_geography' ); END; BEGIN DBMS_RLS.ADD_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_geography', policy_function => 'hide_geography', sec_relevant_cols => 'c_nation, c_region', sec_relevant_cols_opt => dbms_rls.ALL_ROWS ); END;
  • 8. Thomas Teske, Oracle – 2018-06-01 – audience: public – keywords : database, security, autonomous thomas.teske@oracle.com @ThomasTeskeORCL Third policy: reduce the result set i.e. do not pass records as such BEGIN DBMS_RLS.DROP_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_rows_by_region' ); END; BEGIN DBMS_RLS.ADD_POLICY ( object_schema => 'admin', object_name => 'customer', policy_name => 'hide_rows_by_region', policy_function => 'hide_some_regions', statement_types => 'select' ); END; 5. Provide access to the CUSTOMER table Only now you should provide access to the users. Otherwise you would have planned to constrain their data access, but enforced policies later. -- provide access to customer table to users grant select on customer to alice; grant select on customer to bob; grant select on customer to charlie; 6. That is all folks. Now you can start designing your own. Please note: all code is kept most simple and will definitely fail the strict coding guidelines by Steven Feuerstein. But you see, how it is done and can adapt as per your coding ethics, standards and security requirements.