Oracle7 Server Administrator's Guide

Contents Index Home Previous Next

System Security Policy

This section describes aspects of system security policy, and includes the following topics:

Each database has one or more administrators who are responsible for maintaining all aspects of the security policy: the security administrators. If the database system is small, the database administrator may have the responsibilities of the security administrator. However, if the database system is large, a special person or group of people may have responsibilities limited to those of a security administrator.

After deciding who will manage the security of the system, a security policy must be developed for every database. A database's security policy should include several sub-policies, as explained in the following sections.

Database User Management

Database users are the access paths to the information in an Oracle database. Therefore, tight security should be maintained for the management of database users. Depending on the size of a database system and the amount of work required to manage database users, the security administrator may be the only user with the privileges required to create, alter, or drop database users. On the other hand, there may be a number of administrators with privileges to manage database users. Regardless, only trusted individuals should have the powerful privileges to administer database users.

User Authentication

Database users can be authenticated (verified as the correct person) by Oracle using the host operating system, network services, or the database. Generally, user authentication via the host operating system is preferred for the following reasons:

User authentication by the database is normally used when the host operating system cannot support user authentication.

See Also: For more information about network authentication, see .

For more information about user authentication, see "Creating Users" [*].

Operating System Security

If applicable, the following security issues must also be considered for the operating system environment executing Oracle and any database applications:

See Also: For more information about operating system security issues for Oracle databases, see your operating system-specific Oracle documentation.


Contents Index Home Previous Next