 |
|
Oracle Tips by Burleson |
Chapter 11 Oracle Fine Grained Auditing
Then create the context:
create
context claim_app_ctx
using set_claim_app_ctx
/
The application can call the procedures to set
the values:
set_claim_app_ctx(‘domain_name’,’PROLIGENCE.COM’)
set_claim_app_ctx(‘app_username’,’ANAN’)
set_claim_app_ctx(‘web_server’,’ws-01.proligence.com’)
Inside our customer audit handler procedure
fga_auditor, described earlier in this chapter, we can retrieve
these values by issuing
sys_context(‘claim_app_ctx’,’domain_name’)
sys_context(‘claim_app_ctx’,’app_username’)
sys_context(‘claim_app_ctx’,’web_server’)
which can then be placed in appropriate columns
in the custom audit table fga_audit_log. If needed, these can be
encrypted, too.
FGA and Flashback
Queries
Fine Grained
Auditing shows us what query the user issued to select the data, but
perhaps the more important question is what data was displayed to
the user. Consider the following situation: we have found out from
the audit trails that a user has selected the claim amount from the
claims table for a claim that was in INACTIVE status. The policy
that is defined on claims of INACTIVE status enables the auditing
when a user
The above text is
an excerpt from
the bestselling book:
Oracle
Privacy Security Auditing.
It's only $39.95 and has an
download of working security scripts:
This is the only authoritative
book on Oracle Security, Oracle Privacy, and Oracle Auditing written
by two of the world’s leading Oracle Security experts.
This indispensable book is only $39.95 and has an
download of working security scripts:
http://rampant-books.com/book_2003_2_audit.htm
|
Download your Oracle scripts now:
www.oracle-script.com
The
definitive Oracle Script collection for every Oracle professional DBA
|
|
