Which has the higher priority in your organization: Deploying a new database or securing the ones you already have?
Looking for a website, and resources, dedicated solely to securing Oracle databases? Check out DBSecWorx.
Use this package to add, alter and drop compartments, groups, labels, levels, and user access and privileges.
Note: This page has been posted prior to the GA release of 20c. It will be completed once we have access to the release version.
Owned by LBACSYS with no privileges granted.
Allows session access to data authorized by the row's compartments, independent of the row's groups
Allows full read and write access to all data protected by the policy
Allows a session to change its labels and privileges to those of a different user
Allows read access to all data protected by the policy
Allows a user to set or change groups and compartments of a row label, but does not allow changes to the level. (Active only if LABEL_UPDATE is active.)
Allows users to set or lower the level, within a row label, to any level equal to or greater than the minimum level authorized for the user. (Active only if LABEL_UPDATE is active.)
Allows users to set or raise only the level, within a row label, up to the maximum level authorized for the user. (Active only if LABEL_UPDATE is active.)
CREATE OR REPLACE FUNCTION val_work_sched RETURN SIGNTYPE AUTHID DEFINER IS
WHERE app_name = 'UWCLASS';
IF dvalu LIKE 'S%S' THEN
retVal := 1;
ELSIF dvalu LIKE '_M%F_' THEN
retVal := 0;
retVal := -1;
Sets the user's levels, compartments, and groups using a set of labels, instead of the individual components
policy_name IN VARCHAR2,
user_name IN VARCHAR2,
max_read_label IN VARCHAR2,
max_write_label IN VARCHAR2,
min_write_label IN VARCHAR2,
def_label IN VARCHAR2 DEFAULT NULL,
row_label IN VARCHAR2 DEFAULT NULL);