Oracle has announced that Oracle Database Vault, a security product designed to protect and limit access to sensitive data and applications, is now certified with Oracle's PeopleSoft Enterprise applications.
PeopleSoft Enterprise applications can contain highly sensitive business data and privacy-related information, access to which must be tightly controlled in order to meet stringent security and compliance requirements. Oracle's certification of Oracle Database Vault with PeopleSoft Enterprise 8.4 and later versions enables organizations to easily integrate Oracle Database Vault capabilities with their PeopleSoft Enterprise applications -- enabling a strong defense at the data layer of their IT infrastructure. This certification is the first in a series of Oracle Database Vault certifications the company plans to conduct with Oracle and third-party applications.
Designed to protect against insider threats, enforce separation of duty and increase data security, Oracle Database Vault enables organizations to automate internal controls and comply with governance and compliance requirements. Through the use of Oracle Database Vault realms, factors and rules capabilities, organizations can create flexible security controls to manage who can access what data, where, when and how. This certification allows customers to extend the benefits of Oracle Database Vault to data managed within their PeopleSoft Enterprise applications. For example, an organization can use Oracle Database Vault to establish rules that prevent access to application data from outside a specific subnet or IP address, thus establishing a trusted path to the application data.
Additionally, Oracle plans to provide baseline security scripts for Oracle Database Vault via Oracle Technology Network. The scripts are intended to provide PeopleSoft customers with pre-defined, secure Oracle Database Vault configurations common to PeopleSoft environments, saving customers time and providing guidance. For example, one such script is expected to create a zone to protect the entire PeopleSoft application. Another script is intended to restrict the access of the PeopleSoft DBA, so they can apply patches but cannot access business data.
"Oracle Database Vault addresses real customer pain points related to information protection and compliance," said Vipin Samar, vice president, Database Security, Oracle. "The product's certification with our PeopleSoft applications was a natural evolution. When used in unison, Oracle Database Vault and PeopleSoft applications represent a secure environment for a widely used enterprise application."
"PeopleSoft's customers have diverse security needs due to broad global deployments and ongoing administration of changing business models," said John Webb, vice president, PeopleSoft Enterprise Product Strategy, Oracle. "Oracle Database Vault offers our customers an effective tool for addressing these requirements with ongoing flexibility. Our customers can more readily comply with local privacy requirements, more effectively manage mergers and acquisitions and adapt to future challenges related to securing mission critical data."