This content has been marked as final. Show 9 replies
similar question can be "are we 100% secure,wherever we go ?"
well, it depends upon, in what sense you are talking. moreover who is trying to hack into your system. At times, servers at highly secure places have been hacked into :(
Yes. Thank you for sharing your thoughts.
Build a death star with indestructible shield, cut network connections and send the database off... ;)
Seriously, you have to define what you consider a 100% secured database. What do you want to achieve by "securing" the database and what resources/budget is available?
Well.. this question was asked from me by an employer during an interview. My reply was the same that we need to know the requirements. But he replied with a negative saying that Oracle database can never be 100% secured. Although I still insisted that the requirements matter.
Well, maybe you could say that as long as there are apps and users, it can never be 100% secured. But the discussion is really pointless if there are no criteria.
Taking a more customer-centric viewpoint, you should start to ask questions (e.g. what requirements?) - what do you want?
Actually it can be - but again it IS dependent on requirements. A database sitting on a single machine within a radio-shielded enclosure or SCIF with very tight access controls. Result: No unauthorized access, no emanations.
Actually it can be - but again it IS dependent onHow do you ensure all 'authorized' access is secured? A lot of time the security breach is more severe from inside ves outside.
requirements. A database sitting on a single machine
within a radio-shielded enclosure or SCIF with very
tight access controls. Result: No unauthorized
access, no emanations.
Yea why not? Put it into the next Voyager, set it off to the sky and it will be 100% secure unless some green men from Mars won't break it ;)
First of all what does 100% secure means? Secure Oracle, it's just one level of security. You may have the best trusted Oracle database environment, but what happens if the URL that access the application server shows unencrypted passwords? Or this site uses http instead of https?
You may have an oracle secured environment, and leave the site door open and let the operator use an OS authentication to gain access as SYSDBA, nobody is going to say no to this situation.
What would happen with a recyclable backup tape that is sotelen by someone, and used to recreate the database somewhere else?
So 100% securing database must be further clarified and detailed, otherwise it will be just a Maginot Line (http://en.wikipedia.org/wiki/Maginot_Line).