fbpx
 

Enact and Redact: Data Redaction feature of Oracle Advanced Security Enterprise Option in 12c

Kevin TurnerBYOD, Database security, Oracle 11g, Oracle database, Security Assessments, Security Risk

With today’s growing concerns regarding the security on BYO devices (BYOD) such as smartphones, tablets, and laptops; it is critical to ensure sensitive data is not exposed. Enacting security policies and procedures that help remove or reduce these concerns is mandatory in today’s world. Data Redaction is a new feature of the Oracle Advanced Security Enterprise Option introduced with version 12c. It is still a feature that must be licensed separately from Oracle Database Enterprise Edition 12c, but it goes a long way in helping with the enactment of your security policies.

An example of data redaction is something we have all seen when ordering something online at a website you’ve used before. When asked if you would like to use the Credit Card on file and will show something like the following;

0000-0000-0000-3454

This security feature removes sensitive information at the end user layer, before the end user sees it, but without removing or changing the data in the database. This is done with easy to create policies and with minimal resource usage.

According to Oracle, this security feature prevents data columns (such as credit card numbers, Social Security numbers, and other sensitive or regulated data) from being displayed. Sensitive display data can be redacted at runtime on live production systems with minimal disruption to running applications and without altering the actual stored data. Different types of redaction are supported and you can conceal entire data values or redact only part of the value.

What’s the difference between Data Masking and Redaction? Oracle Data Masking Pack is mainly used for non-production environments to mask data sets in bulk. However, Data Redaction is used in production environments for redacting data in applications, without having to make changes to the application itself.

Oracle Advanced Security with Oracle Database 12c is available on both new and legacy applications that need to limit exposure of sensitive data without invasive application changes. Oracle Data Redaction was also a feature added during the patch for Oracle Database 11g Release 2 (11.2.0.4), back-ported from Oracle 12c R1.

 

Leave a Comment

Your email address will not be published. Required fields are marked *

*
*

Contact Us

If you have an urgent question regarding your software licensing or a software audit, please contact Miro right away.

Phone:
(732)738–8511 x1208
Email:
Webchat:
Use the chat box on the right
Meeting:

About Us

Miro is a leading global provider of software asset management services, specializing in license management, audit advisory, negotiation tactics, support management, and cloud services. We help our clients maximize ROI on their software license investments, stay in compliance, and minimize the impact of audits. Miro's performance guarantee promises that our long-tenured, diverse, and passionate team of expert analysts provides insightful and actionable advice to help our clients achieve the best possible outcomes.

Performance Guarantee

Miro’s no risk Performance Guarantee is that the amount of cost savings that we uncover will be more than our fees.

[yarpp]

Recent Posts

Oracle Guides


Microsoft Resources


IBM Resources

Case Studies

Managed Services for Oracle Licensing

Miro’s Managed Services for Oracle licensing is a best practice approach for an organization to optimize and outsource the practice of Software Asset Management to specialized external experts to ensure the organization’s compliance with vendor rules and policies.

Learn More