Proposed Feature Implementation: Enhanced Security for Dimensional Values in OOTB Dashboard — Oracle Analytics

Oracle Fusion Data Intelligence Idea Lab

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Proposed Feature Implementation: Enhanced Security for Dimensional Values in OOTB Dashboard

Needs Votes
22
Views
0
Comments
User_SDVHI
User_SDVHI Rank 1 - Community Starter

Objective:
To enhance data security and provide consistent behavior across Oracle functional areas, implement a security mechanism that restricts the visibility of dimensional values (e.g., Business Units, Ledgers, Departments) in filters, prompts, and reports based on user security assignments.

Current Behavior and Gap

  1. Procurement Functional Area:
    • Security is applied only when dimensional attributes are combined with fact metrics or attributes from multiple dimensions.
    • If a filter or report contains only dimensional values (e.g., BU, Ledger), all values in the system are displayed, regardless of the user’s security assignments.
  2. HCM Functional Area:
    • Security is consistently applied even when a dimensional attribute is used in isolation.

Gap:
This inconsistent behavior between functional areas creates potential security and compliance risks. Sensitive dimensional values are exposed in filters and prompts, which can be a significant concern for clients with strict data security policies.

Proposed Feature: Security Enhancement for Dimensional Values in Filters and Prompts

Key Features and Functionalities:

  1. Restrict Dimensional Values in Filters:
    • Dynamically display only the dimensional values (e.g., BU, Ledger, Department) assigned to the user, based on their security roles and configurations.
  2. Apply Security to Standalone Dimensional Attributes:
    • Ensure security is enforced even when reports or prompts include only dimensional attributes without any associated metrics or additional dimensions.
  3. Standardized Security Across Functional Areas:
    • Align the security behavior for dimensional values across all Oracle functional areas, such as Procurement, HCM, and ERP, to ensure consistency.
  4. Configurable Security Controls:
    • Provide administrators with options to enable or disable security restrictions for specific dimensions, functional areas, or use cases.
  5. Granular Role-Based Security:
    • Allow security configurations to be applied at a granular level, enabling organizations to tailor restrictions for specific user groups or business scenarios.

Benefits:

  1. Enhanced Data Security:
    • Prevent unauthorized access to sensitive dimensional values, reducing compliance risks and protecting client data.
  2. Improved Consistency:
    • Provide a unified security model across all functional areas, ensuring predictable behavior for users and administrators.
  3. Client Trust and Satisfaction:
    • Address client concerns regarding data exposure in high-security projects, reinforcing Oracle’s commitment to robust security measures.
  4. Scalability and Flexibility:
    • Offer adaptable configurations that cater to diverse organizational needs without compromising security.

Use Case Examples:

  1. Business Units:
    • A user assigned to BU1 should only see BU1 in filters and reports, not all BUs in the system.
  2. Ledgers:
    • Users assigned to specific ledgers should only see their assigned ledger values in prompts or queries.
  3. Departments or Cost Centers:
    • Security rules should restrict users from accessing department or cost center values outside their assigned scope.

Conclusion:

This proposed enhancement ensures robust security for all dimensional values across Oracle functional areas. By implementing this feature, Oracle can address critical compliance concerns, deliver a consistent user experience, and strengthen client trust in the platform's security framework.

Tagged:
4
4 votes

Needs Votes · Last Updated