Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

DBV: Rule to disable 'ALTER TABLE ... MODIFY ... DECRYPT'

914712Feb 24 2012 — edited Feb 27 2012

DBAs will need access to the ALTER TABLE function on a regular basis. However, we want to disable "ALTER TABLE employee MODIFY (first_name DECRYPT);" for example so that DBAs cannot disable TDE encryption on the tablespace or column.

Is it possible to create a rule that will explicitly disable the 'MODIFY ... DECRYPT' statements, or can anyone that has access to the 'MODIFY TABLE' function perform any modification, regardless of function.

Thank you.

Locked Post

New comments cannot be posted to this locked post.

Locked on Mar 26 2012

Added on Feb 24 2012

#database-security, #database-security-general

2 comments

216 views