Tag Archives: Presentation

DOAG SIG Security

Just a couple of hours ago I’ve lecture a presentation about the latest Generation of Database Technology at the DOAG SIG Security in München. It is a sneak preview on a few upcoming security improvements. Unfortunately I do not yet have the permission to provide the presentation for download. But I will make the download link available once the dust settles on the latest Generation of Database Technology

so stay tuned.

SOUG Special Intrest Group Baden March 21st

In about two weeks I will participate at the SOUG special interest group at Baden. I will present a paper entitled “New Security Features in latest generation of Oracle Database“. Where latest generation of Oracle Database does not stand for an other Oracle 11g release. But that’s an other story…

The aim of the presentation is to provide a range of information on new security features as they could be released in with latest generation of Oracle Database. It covers the following possible new features.

  • Data Redaction
  • Unified Datenbank Auditing
  • Role and Privilege Analysis
  • Improved Database Vault
  • Database Application Security Architecture
  • Improved Key Management
  • New OS Roles

Have a look at the SOUG Webpage for a detailed Agenda of the Event and the location. Looking forward to see you there.

Due to the fact that this presentation contains preliminary information, the slides will not be available for download. It is a must to personally attend the SIG SOUG 🙂 If you do not have time to participate at the SOUG event, you have a second chance later this year. I’ve planned a similar presentation for the DOAG Event in Düsseldorf. More on that later.

Oracle Database Security Seminar – New dates

After the two Database Security Seminars in february, Oracle plans two more events in june. I’ll participate with the presentation “Oracle Security – How much should it be?” as already posted in the older blog post Oracle Database Security Seminar – Wieviel darf es denn sein?. The event and presentation is again in german, but there will be a set of slides available in english.

Event Informations

Event announcement and description on the Oracle website.

Abstract

  • Datendiebstahl – auch bei Ihnen ein Risiko?
  • Aber wie hoch ist das Risiko? Und welche (sinnvollen!)
  • Massnahmen gibt es, um das Risiko zu reduzieren?

Dieser Vortrag präsentiert eine fragebogengestützte Herangehensweise an eine Risikoanalyse, anhand deren Ergebnisse die Datenbanken in Security-Klassen eingeteilt (public, intern, vertraulich) werden. In einem zweiten Schritt werden die Risiken pro Klasse definiert – und dazu die Massnahmen, um dies zu reduzierenden. Ziel des Vortrages ist, dass Sie Datenbanken klassifizieren lernen (Sie kennen deren Schutzbedarf und das vertretbare Restrisiko). Ausserdem sehen Sie an einem Praxisbeispiel die Umsetzungen der nötigen Massnahmen.

Slides

The updated slides can be downloaded after the event on this website. Slides from the last events in Düsseldorf, Berlin and Basel are already available.

Update: DOAG / SOUG Security-Lounge at Basel

As I announced in my last post DOAG / SOUG Security-Lounge at Basel I’ve been at the Security-Lounge at Basel. The slides can know be downloaded below or from the download section on this website.

 Oracle_Audit_in_a_Nutshell.pdf  Oracle_Database_Security.pdf

I’m happy for any comment on the presentation or the slides. Feel free to add a comment or drop me a line by mail.

DOAG / SOUG Security-Lounge at Basel

I haven’t found time to provide any blog post in the past weeks. Never the less I would like to inform about the upcoming security lounge in Basel at which I’ll give two lectures about Oracle Security. It’s a small even with just one speaker 😉 Ok it was planned to have a second one but it did not work. The event is organized by the DOAG regional group Freiburg and SOUG. It will start at 17:30 on the 24th of April.

Have a look at the DOAG Webpage for a detailed Agenda of the Event and the location. Looking forward to see you there.

I’ll post the slides for both presentations shortly after the event on this page.

Oracle Database Security Seminar – Wieviel darf es denn sein?

Just finished my presentation about Database Security classification and possible risk minimization at the Oracle Database Security Seminar in Düsseldorf and Baden. Due to the fact that the hole Event is in german I’ve also wrote the presentation in german.

Abstract

  • Datendiebstahl – auch bei Ihnen ein Risiko?
  • Aber wie hoch ist das Risiko? Und welche (sinnvollen!)
  • Massnahmen gibt es, um das Risiko zu reduzieren?

Dieser Vortrag präsentiert eine fragebogengestützte Herangehensweise an eine Risikoanalyse, anhand deren Ergebnisse die Datenbanken in Security-Klassen eingeteilt (public, intern, vertraulich) werden. In einem zweiten Schritt werden die Risiken pro Klasse definiert – und dazu die Massnahmen, um dies zu reduzierenden. Ziel des Vortrages ist, dass Sie Datenbanken klassifizieren lernen (Sie kennen deren Schutzbedarf und das vertretbare Restrisiko). Ausserdem sehen Sie an einem Praxisbeispiel die Umsetzungen der nötigen Massnahmen.

Slides

The slides can be downloaded below or from the download section on this website.

 Security_Wieviel_darf_es_sein

I’m happy for any comment on the presentation or the slides. Feel free to add a comment or drop me a line by mail.

Slides SOUG Presentation on DBMS_AUDIT_MGMT

Just finished my presentation about audit management with DBMS_AUDIT_MGMT at the SOUG Special Interest Group Event in Baden. I’m glad having a MIFI so I can immediately upload the slides 🙂 and still have some time for the aperitif….

 Slides Audit Management with DBMS_AUDIT_MGMT.pdf

I’m happy for any comment on the presentation or the slides. Feel free to add a comment or drop me a line by mail.

SOUG Presentation on DBMS_AUDIT_MGMT

On the 24 of March I’ll have a presentation on Database Audit and DBMS_AUDIT_MGMT at the SOUG SIG Event. The presentation is about 30 minutes and will cover a rough overview of DBMS_AUDIT_MGMT, latest Issues and Bugs as well some Ideas on how audit could be simplified.

Have a look at the SOUG Webpage for a detailed Agenda of the Event and the location. Looking forward to see you there.

I’ll post the presentation on this side right after the presentation.