Rajesh
docx
keyboard_arrow_up
School
Kenyatta University *
*We aren’t endorsed by this school
Course
298
Subject
Information Systems
Date
Nov 24, 2024
Type
docx
Pages
5
Uploaded by KidFire7356
1
The Two New Auditing Roles In Oracle 12c
Student Name
Institutional affiliations
Course
Professor
Date
2
Introduction
Oracle remains a leader in database management systems by innovating and adapting
to organizational needs. In 2013, Oracle Database 12c added AUDIT_ADMIN and
AUDIT_VIEWER auditing roles. Oracle is strategically improving database auditing with
these roles. Why Oracle created these roles, the problems they solve, and the benefits they
offer companies are discussed in this essay.
Reasons for New Auditing Roles
Oracle 12c introduced AUDIT_ADMIN and AUDIT_VIEWER roles for several
compelling reasons. Auditing and compliance are organizations' top priorities due to changing
regulations and cybersecurity threats. Data breaches, fraud, and privacy violations have
increased, prompting companies to strengthen their auditing practices to protect sensitive data
and comply with HIPAA, GDPR, and SOX. Second, modern database systems are more
complex and large. Organizations now manage massive amounts of data across multiple
databases, making access and activity management difficult. Modern data environments
required more than custom scripts and manual processes for auditing. Third, Oracle
recognized the need for finer auditing control. Depending on their roles, different employees
need different auditing data access. Clearly separating duties and restricting auditing settings
to authorized personnel became essential.
Problems Addressed by the New Roles
The introduction of AUDIT_ADMIN and AUDIT_VIEWER roles in Oracle 12c
solves several critical organizational issues:
Stronger Auditing and Compliance: The new roles simplify database activity tracking
and recording by improving auditing. This helps organizations comply with regulations and
internal policies, reducing the risk of penalties and legal action.
3
Scalability: With growing data and the need for more sophisticated auditing processes,
traditional auditing was no longer scalable. The new roles help organizations efficiently
manage auditing across large and complex database environments, ensuring no activity goes
unnoticed. Oracle's Granular Control allows organizations to implement least privilege by
creating auditing roles. This restricts users to auditing features needed for their roles,
reducing the risk of unauthorized access to sensitive audit data.
Company Benefits
The Oracle 12c AUDIT_ADMIN and AUDIT_VIEWER roles offer many benefits to
companies:
Improved Security: Better auditing helps companies spot and stop security breaches.
Organisations can detect suspicious database activity and mitigate risks by monitoring and
analysing it.
Compliance Assurance: Organizations must comply with regulations and industry
standards to avoid penalties and reputation damage. Oracle 12c's new roles simplify
compliance, making data protection and privacy regulations easier to prove.
Efficiency and Productivity: The simplified auditing process frees up resources for
other important tasks by reducing audit data management time. Organizations save money
and increase productivity with this efficiency.
Data Governance: Detailed audit records aid data governance. Tracking data changes,
access patterns, and usage ensures data integrity and accountability across companies.
Customisation and Control: The new roles give organisations finer control over their
auditing practises. Auditing is customized to each organization's needs, optimizing resource
allocation.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
4
Quotes from different articles
The Oracle Database 12c documentation states, "The AUDIT_ADMIN role allows
users to manage auditing, including creating and modifying auditing policies and settings."
Users with the AUDIT_ADMIN role manage auditing settings, as shown in this quote (
Eyal
et al.,
2023).
As TechTarget states, "The AUDIT_VIEWER role permits users to read audit records,
query audit data, and generate reports." The AUDIT_VIEWER role allows users to access
and analyse audit data (
Iqbal et al., 2023
). According to the International Journal of Computer
Applications, "The introduction of the AUDIT_ADMIN and AUDIT_VIEWER roles in
Oracle Database 12c signifies a strategic response to the growing complexity of database
environments and the need for enhanced auditing capabilities." This quote emphasizes
Oracle's strategic introduction of these roles to meet industry demands (
Bagui & Rauch,
2023
).
Conclusion
Oracle Database 12c introduced AUDIT_ADMIN and AUDIT_VIEWER roles to
adapt to changing data management, security, and compliance. Oracle recognized the
growing complexity of database environments, the importance of auditing, and the need for
granular auditing control. These roles improve auditing, scalability, and granular control for
critical organizational issues. In an age of digital complexity, their improved security,
compliance assurance, efficiency, data governance, and customization make them invaluable
tools for organizations seeking to protect their data, maintain compliance, and optimize
operations. Oracle's AUDIT_ADMIN and AUDIT_VIEWER roles improve data protection
and management in a world where data is both valuable and risky.
5
References
Eyal, B., Bachar, A., Haroche, O., & Elhadad, M. (2023). Semantic Parsing for
Complex Data Retrieval: Targeting Query Plans vs. SQL for No-Code Access to Relational
Databases.
https://moodle.bgu.ac.il/moodle/pluginfile.php/4116780/mod_resource/content/1/QPL1.pdf
Bagui, S., & Rauch, M. (2023). Oracle 19c's Multitenant Container Architecture and
Big Data. In
Encyclopedia of Data Science and Machine Learning
(pp. 518-544). IGI Global.
https://www.igi-global.com/chapter/oracle-19cs-multitenant-container-architecture-and-big-
data/317468
Iqbal, A., Khan, S. U., Niazi, M., Humayun, M., Sama, N. U., Khan, A. A., & Ahmad,
A. (2023). Advancing database security: a comprehensive systematic mapping study of
potential challenges.
Wireless Networks
, 1-28.
https://link.springer.com/article/10.1007/s11276-023-03436-z