Oracle Database Vault provides powerful security controls for protecting applications and sensitive data. Oracle Database Vault prevents privileged users from accessing application data, restricts ad-hoc database changes and enforces controls over how, when and where application data can be accessed. Oracle Database Vault secures existing database environments transparently, eliminating costly and time consuming application changes. Oracle Database Vault is a database security option that comes with Oracle database Enterprise Edition, it helps:

• protect application data from DBA access.
• enforce protection of database structures from unauthorized change.
• set a variety of access controls to implement dynamic and flexible security requirements.
• These features help customers adhere to standards for regulatory compliance, separation of duties, and internal control.

Oracle Database Vault is the industry's leading solution for protecting business data. Whether it's traditional client server applications or web based applications, Oracle Database Vault provides flexible, transparent and highly adaptable security controls with no application changes.

Why Oracle Database Vault?

• Regulations such as Sarbanes-Oxley and Graham-Leach Bliley, and Basel II require Strong Internal Controls and Separation of Duty.
• Internal threats are a much bigger concern today require enforcement of operational security policies - Who, When, Where can data be accessed?
• Database consolidation strategy requires preventive measures against access to application data by Powerful (DBA) users.

Privileged User Controls

IT administrators, database administrators, and application administrators fill highly trusted positions within the enterprise. However, regulatory compliance, outsourcing, application consolidation and increasing concerns over insider threats have resulted in an almost mandatory requirement for strong controls on access to sensitive application data. With Oracle Database Vault Realms, enterprises can prevent privileged users from accessing application data. Realms are easily defined and can be placed around an entire application or a set of tables quickly and easily.