Protecting oracle pl/sql source code from a dba user
In this paper we are presenting a new way to disable DDL statements on some specific PL/SQL procedures to a dba user in the Oracle database. Nowadays dba users have access to a lot of data and source code even if they do not have legal permissions to see or modify them. With this method we can disab...
| Main Authors: | , , |
|---|---|
| Format: | Text |
| Language: | unknown |
| Published: |
2012
|
| Subjects: | |
| Online Access: | http://arxiv.org/abs/1209.2794 |
| id |
ftarxivpreprints:oai:arXiv.org:1209.2794 |
|---|---|
| record_format |
openpolar |
| spelling |
ftarxivpreprints:oai:arXiv.org:1209.2794 2023-09-05T13:19:06+02:00 Protecting oracle pl/sql source code from a dba user Paci, Hakik Mece, Elinda Kajo Xhuvani, Aleksander 2012-09-13 http://arxiv.org/abs/1209.2794 unknown http://arxiv.org/abs/1209.2794 Computer Science - Databases text 2012 ftarxivpreprints 2023-08-16T12:49:21Z In this paper we are presenting a new way to disable DDL statements on some specific PL/SQL procedures to a dba user in the Oracle database. Nowadays dba users have access to a lot of data and source code even if they do not have legal permissions to see or modify them. With this method we can disable the ability to execute DDL and DML statements on some specific pl/sql procedures from every Oracle database user even if it has a dba role. Oracle gives to developer the possibility to wrap the pl/sql procedures, functions and packages but those wrapped scripts can be unwrapped by using third party tools. The scripts that we have developed analyzes all database sessions, and if they detect a DML or a DDL statement from an unauthorized user to procedure, function or package which should be protected then the execution of the statement is denied. Furthermore, these scripts do not allow a dba user to drop or disable the scripts themselves. In other words by managing sessions prior to the execution of an eventual statement from a dba user, we can prevent the execution of eventual statements which target our scripts. Text DML ArXiv.org (Cornell University Library) |
| institution |
Open Polar |
| collection |
ArXiv.org (Cornell University Library) |
| op_collection_id |
ftarxivpreprints |
| language |
unknown |
| topic |
Computer Science - Databases |
| spellingShingle |
Computer Science - Databases Paci, Hakik Mece, Elinda Kajo Xhuvani, Aleksander Protecting oracle pl/sql source code from a dba user |
| topic_facet |
Computer Science - Databases |
| description |
In this paper we are presenting a new way to disable DDL statements on some specific PL/SQL procedures to a dba user in the Oracle database. Nowadays dba users have access to a lot of data and source code even if they do not have legal permissions to see or modify them. With this method we can disable the ability to execute DDL and DML statements on some specific pl/sql procedures from every Oracle database user even if it has a dba role. Oracle gives to developer the possibility to wrap the pl/sql procedures, functions and packages but those wrapped scripts can be unwrapped by using third party tools. The scripts that we have developed analyzes all database sessions, and if they detect a DML or a DDL statement from an unauthorized user to procedure, function or package which should be protected then the execution of the statement is denied. Furthermore, these scripts do not allow a dba user to drop or disable the scripts themselves. In other words by managing sessions prior to the execution of an eventual statement from a dba user, we can prevent the execution of eventual statements which target our scripts. |
| format |
Text |
| author |
Paci, Hakik Mece, Elinda Kajo Xhuvani, Aleksander |
| author_facet |
Paci, Hakik Mece, Elinda Kajo Xhuvani, Aleksander |
| author_sort |
Paci, Hakik |
| title |
Protecting oracle pl/sql source code from a dba user |
| title_short |
Protecting oracle pl/sql source code from a dba user |
| title_full |
Protecting oracle pl/sql source code from a dba user |
| title_fullStr |
Protecting oracle pl/sql source code from a dba user |
| title_full_unstemmed |
Protecting oracle pl/sql source code from a dba user |
| title_sort |
protecting oracle pl/sql source code from a dba user |
| publishDate |
2012 |
| url |
http://arxiv.org/abs/1209.2794 |
| genre |
DML |
| genre_facet |
DML |
| op_relation |
http://arxiv.org/abs/1209.2794 |
| _version_ |
1776199908157554688 |