Cloud Customers Need to Secure Their Own Data

The key takeaway is that if you have your data in any cloud service, you must be as rigorous in securing that data as if it were in your own data center—and in some cases even more so.

SQL Server Data Encryption Options

These days it’s only a matter of time before our firewalls or access controls are breached. Then what? In a multi-tiered security strategy, data encryption is a critical next line of defense.

Lock the Safe—Secure the Database

You are going away on a much-needed vacation to Aruba. You will only be gone for a week. But you understand the importance of security, so you make sure you lock the windows and doors. You put the lights on a timer so would-be thieves think there is some activity in the house. You cancel […]

Database Patch News — November 2019 (Issue 1)

Welcome to Database Patch News, Buda Consulting’s monthly newsletter of current patch information for Oracle and Microsoft SQL Server. Here you’ll find information on available patches—including security patches—and desupported versions made available during the past month.

A Simple Way to Improve Data Security

Shrink Your Sensitive Data Footprint Protecting data is hard. Knowing for sure that you have identified and mitigated every vulnerability takes a lot of work and constant vigilance.  The more servers you have to harden, the more databases you have to protect, the more work it is, and the more likely you will leave a hole […]

Is The Sensitive Data In Your Oracle Database Really Safe?

Discovering Sensitive Data Oracle has long had strong database encryption functionality and it keeps getting better. But they have been lacking a simple way to identify sensitive data in the database so you know what to encrypt, audit or protect via policies.  I thought that might have improved recently with the release of a new database […]

Critical Oracle Security and Stability Flaw Discovered

Infoworld today announced that they have been researching a flaw in oracle that can result in the inability to restore your database. Large oracle shops with interconnected databases are most at risk. The problem revolves around oracle’s SCN (system change number). The number has a limit that if exceeded, can render a database unusable, even […]

Database Downtime: Prepare For The Unexpected

Test your Assumptions: Database Backup and Recovery Every now and then something happens that really drives home the need to test and validate the assumptions that we have about the availability of our IT assets. I had an experience this week that brought to mind the importance of testing backup and recovery and business continuity plans. […]

Database Security: Is Your Database Vulnerable To Internal Attack?

Enforcing Least Privilege To Enhance Database Security The principle of least privilege refers to the practice of ensuring that each individual has only the privilege and access that is necessary to perform their job function. In most IT shops that run an Oracle database, there are a group of individuals that need administrative access to the operating system and […]

Database Security Issues in the Cloud, Part 2: Regulatory Compliance

As the number of databases moving to public, private and hybrid cloud computing infrastructure increases, security concerns are a significant and growing problem. Organizations will do well to scrutinize the security practices of cloud providers and other third parties that store their data. But wherever databases are running, responsibility for the security and integrity of […]