Article
Many PL/SQL developers believe that only database administrators and security specialists should take care of security. Indeed, some security aspects (e.g. user and privilege management) should be taken care of by administrators.
But it would be a serious mistake to believe that PL/SQL developers do not care about this topic at all. First of all, security is not a problem that can be solved once; it is a means of achieving a goal that must be constantly remembered. Secondly, many administrators focus their efforts on protecting the database as a whole, rather than programming the security features of a particular application.
You have probably heard that the reliability of a system is determined by the reliability of its weakest link. This principle is equally applicable to application security.
Every element of the infrastructure – application, architecture, middleware, database, operating system – contributes to the overall security of the infrastructure, and security failure of one component poses a threat to the entire system.
Understanding the structural security elements and integrating them into the application architecture is not only desirable but absolutely necessary.
The security aspects of Oracle are divided into three general categories:
- Database, system, and network administrators only. These issues (such as user and privilege management) are outside the scope of my blog.
- Aspects of importance to architecture developers and designers that are not under the responsibility of administrators. One example is the choice of a call rights model when creating stored code; usually, the decision is made by the developer, not the administrator, during the design process.
- Aspects that are usually considered to be administrative, but that should be well known to developers and designers. This category includes encryption, line-level security, and application contexts. These are the aspects that my next articles will focus on.
How will the features and tools describe in my blog help PL/SQL developers and application architecture designers in their work? To answer this question, you should consider each topic separately:
- Encryption plays a vital role in data protection and is actively used in many situations when designing applications. You must have practical knowledge of Oracle’s encryption-related functionality, including the Transparent Data Encryption (TDE) mechanism presented in Oracle Database 10g Release 2 and the Transparent Table Encryption (TTE) mechanism presented in Oracle Database 11g.
- String level security (RLS, Row Level Security). When designing an application, you need to have a good understanding of the architecture of access and authorization checks to work with data. RLS allows you to limit the lines available to the user. In many cases, RLS simplifies understanding and implementation of applications, and sometimes even automatically ensures that ready-made applications comply with security rules adopted in your organization.
- Application contexts are name/value pairs that are defined in a session by performing specific stored procedures. Application contexts are typically used to manage access to database resources according to rules that vary depending on the current user.
- Detailed FGA (Fine-Grained Auditing) provides a mechanism for registering the fact that users issue certain commands and fulfill certain conditions. The FGA provides the developer with a lot of useful functions. For example, the FGA actually allows implementing SELECT triggers – user procedures that should be automatically performed at each data sampling from the table.
The topic of security in Oracle is truly immense; in my subsequent blogs, we will only look at its aspects of greatest interest to PL/SQL developers in the most general way. For more information on these and other Oracle security operations, see the Oracle PL/SQL for DBAs (Arup Nanda, Steven Feuerstein, O’Reilly) book.
Many other books have also been published to help you understand the intricacies of security.
About Enteros
Enteros offers a patented database performance management SaaS platform. It proactively identifies root causes of complex business-impacting database scalability and performance issues across a growing number of clouds, RDBMS, NoSQL, and machine learning database platforms.
The views expressed on this blog are those of the author and do not necessarily reflect the opinions of Enteros Inc. This blog may contain links to the content of third-party sites. By providing such links, Enteros Inc. does not adopt, guarantee, approve, or endorse the information, views, or products available on such sites.
Are you interested in writing for Enteros’ Blog? Please send us a pitch!
RELATED POSTS
How to Enable Intelligent Wealth Management Operations with Enteros Generative AI and Database Intelligence
- 16 June 2026
- Database Performance Management
Introduction The wealth management industry is undergoing a significant transformation driven by digital innovation, evolving client expectations, regulatory complexity, and the rapid adoption of artificial intelligence. Modern wealth management firms are expected to deliver highly personalized financial services while managing increasing volumes of client, portfolio, market, and operational data. Today’s wealth management organizations rely on … Continue reading “How to Enable Intelligent Wealth Management Operations with Enteros Generative AI and Database Intelligence”
How Autonomous Database Optimization Enhances Cloud-Native Application Performance
Cloud-native applications have transformed how modern enterprises build, deploy, and scale digital services. By leveraging microservices, containers, Kubernetes orchestration, serverless architectures, and elastic cloud infrastructure, organizations can innovate faster and respond dynamically to changing user demands. However, while application layers have become increasingly agile, the database layer often remains one of the most complex performance … Continue reading “How Autonomous Database Optimization Enhances Cloud-Native Application Performance”
How to Improve Media Platform Scalability with Enteros Database Software and Cost Intelligence
Introduction The media and entertainment industry is experiencing unprecedented digital growth. Streaming platforms, digital publishers, content distribution networks, broadcasting organizations, gaming companies, and media technology providers are serving larger audiences than ever before. Modern media organizations rely on complex digital infrastructures to support: Video streaming platforms Content management systems Digital publishing applications Advertising technology platforms … Continue reading “How to Improve Media Platform Scalability with Enteros Database Software and Cost Intelligence”
Why Database Performance Intelligence Is Critical for Modern Enterprise Scalability
Modern enterprises operate in an increasingly digital-first economy where application performance directly influences customer satisfaction, revenue generation, and competitive advantage. Whether powering e-commerce transactions, digital banking, SaaS platforms, healthcare systems, or real-time analytics, databases remain the foundation of nearly every critical business application. As organizations scale, database environments become more complex. Enterprises often manage thousands … Continue reading “Why Database Performance Intelligence Is Critical for Modern Enterprise Scalability”