Index

A B C D E F G H I L M N O P R S T U V W

A

access control

discretionary, 1-4, 1-5, 3-21

label-based, 1-9, 1-12

policies, 1-4

understanding, 3-1

access mediation

and views, 3-21

enforcement options, 3-23

introduction, 3-1

label evaluation, 3-9

program units, 3-21

ADD_COMPARTMENTS function, 7-6

ADD_GROUPS procedure, 7-8

inverse groups, 14-18

ALL_CONTROL option, 8-4, 8-5, 8-9

ALL_SA_AUDIT_OPTIONS view, C-2

ALL_SA_COMPARTMENTS view, C-2

ALL_SA_DATA_LABELS view, C-3

ALL_SA_GROUPS view, C-3

ALL_SA_LABELS view, C-3

ALL_SA_LEVELS view, C-3

ALL_SA_POLICIES view, C-4

ALL_SA_PROG_PRIVS view, C-4

ALL_SA_SCHEMA_POLICIES view, C-4

ALL_SA_TABLE_POLICIES view, C-5

ALL_SA_USER_LABELS view, C-5

ALL_SA_USER_LEVELS view, C-6

ALL_SA_USER_PRIVS view, C-6

ALL_SA_USERS view, C-5

ALTER_COMPARTMENT procedure, 6-15

ALTER_COMPARTMENTS procedure, 7-5

ALTER_GROUP procedure, 6-17

ALTER_GROUP_PARENT

inverse groups, 14-22

ALTER_GROUP_PARENT procedure, 6-18

ALTER_GROUPS function, 7-9

ALTER_GROUPS procedure

inverse groups, 14-19

ALTER_LABEL function, 6-21

ALTER_LEVEL procedure, 6-13, 6-14

ALTER_POLICY procedure, 6-10

inverse groups, 14-18

ALTER_SCHEMA_POLICY procedure, 9-3, 9-8

ANALYZE command, 13-7

APPLY_SCHEMA_POLICY procedure, 9-3, 9-7

with inverse groups, 14-4

APPLY_TABLE_POLICY procedure, 9-3, 9-4

with inverse groups, 14-4

architecture, Oracle Label Security, 1-5

AS SYSDBA clause, 13-11

AUDIT procedure, 11-4

AUDIT_LABEL procedure, 11-8

AUDIT_LABEL_ENABLED function, 11-8

AUDIT_TRAIL parameter, 11-2

auditing

audit trails, 1-5, 11-2, 11-9

options for Oracle Label Security, 11-3

Oracle Label Security, 11-1

security and, 11-4

strategy, 11-10

systemwide, 11-2

types of, 6-4

views, 11-9

B

B-tree indexes, 13-7

C

CHAR_TO_LABEL function, 4-7, 4-16, 4-18

characters, valid, 2-3, 6-9

CHECK_CONTROL option

and label update, 8-18

and labeling functions, 8-16

definition, 8-3, 8-5

with other options, 8-11

child rows

deleting, 8-19

inserting, 8-16

updating, 8-19

Common Criteria, 1-3

COMP_READ function, 4-23

COMP_WRITE function, 4-23

COMPACCESS privilege, 3-16, 3-17

inverse groups, 14-7, 14-10

compartments

definition, 2-5

example, 2-6

setting authorizations, 3-6

COMPATIBLE parameter, 13-11

components. See label components

CREATE FUNCTION statement, 10-4

CREATE PACKAGE BODY statement, 10-4

CREATE PACKAGE statement, 10-4

Create Policy icon, 6-2, 6-8

CREATE PROCEDURE statement, 10-4

CREATE TABLE AS SELECT statement, C-13

CREATE_COMPARTMENT procedure, 6-15

CREATE_GROUP procedure, 6-17

inverse groups, 14-22

CREATE_LABEL procedure, 6-19

CREATE_LEVEL procedure, 6-13

CREATE_POLICY procedure, 6-2, 6-9

inverse groups, 14-17

CREATE_VIEW procedure, 11-9, C-12

creating databases, 13-11

D

DAC. See discretionary access control (DAC)

data

access rules, 1-7

label-based access, 2-1

sensitivity, 1-11, 6-21

data dictionary tables, 7-2, 7-17, 13-7, 13-11, C-2

DATA_LABEL function, 10-7

database links, 12-3

Database Management System Protection Profile (DBMS PP), 1-3

databases, creating additional, 13-11

DBA_policyname_AUDIT_TRAIL view, C-12

DBA_SA_AUDIT_OPTIONS view, 11-7, C-7, C-13

DBA_SA_COMPARTMENTS view, 13-3, C-7

DBA_SA_DATA_LABELS view, C-7

DBA_SA_GROUP_HIERARCHY view, C-8

DBA_SA_GROUPS view, 13-3, C-8

DBA_SA_LABELS view, 13-3, C-8

DBA_SA_LEVELS view, 13-3, C-8

DBA_SA_POLICIES view, C-9

DBA_SA_PROG_PRIVS view, C-9

DBA_SA_SCHEMA_POLICIES view, 8-12, C-9

DBA_SA_TABLE_POLICIES view, 8-12, C-9

DBA_SA_USER_COMPARTMENTS view, 7-18, C-11

DBA_SA_USER_GROUPS view, 7-18, C-11

DBA_SA_USER_LABELS view, C-11

DBA_SA_USER_LEVELS view, 7-18, C-12

DBA_SA_USER_PRIVS view, C-12

DBA_SA_USERS view, 7-16, C-10

default row label, 4-20

DELETE_CONTROL option, 8-3, 8-5, 8-19

DELETE_RESTRICT option, 8-20

deleting labeled data, 8-19

demobld.sql file, 6-6

DISABLE_POLICY procedure, 6-10

DISABLE_SCHEMA_POLICY procedure, 9-3, 9-9

DISABLE_TABLE_POLICY procedure, 9-3, 9-6

discretionary access control (DAC), 1-4, 3-21

distributed databases

connecting to, 12-3

multiple policies, 3-24

Oracle Label Security configuration, 12-1

remote session label, 12-3

dominance

definition, 3-11, 3-12

functions, A-2

greatest lower bound, 4-12

inverse groups, 14-24

least upper bound, 4-12

overview, A-1

DOMINATED_BY function, A-2, A-4, A-5

DOMINATES function, A-1, A-2, A-3, A-4

DROP USER CASCADE restriction, C-13

DROP_ALL_COMPARTMENTS procedure, 7-7

DROP_ALL_GROUPS procedure, 7-10

DROP_COMPARTMENT procedure, 6-16

DROP_COMPARTMENTS function, 7-7

DROP_GROUP procedure, 6-19

DROP_GROUPS procedure, 7-10

DROP_LABEL function, 6-22

DROP_LEVEL procedure, 6-14

DROP_POLICY procedure, 6-11

DROP_USER_ACCESS procedure, 7-14

DROP_VIEW procedure, 11-9

duties, of security administrators, 6-4

E

ENABLE_POLICY procedure, 6-11

ENABLE_SCHEMA_POLICY procedure, 9-3, 9-10

ENABLE_TABLE_POLICY procedure, 9-3, 9-6

enforcement options

and UPDATE, 8-17

combinations of, 8-10

exemptions, 8-12

guidelines, 8-10

INVERSE_GROUP, 14-4

list of, 8-3

overview, 8-2

viewing, 8-12

Evaluation Assurance Level (EAL) 4, 1-3

EXEMPT ACCESS POLICY privilege, 8-12

Export utility

LBACSYS restriction, C-13

policy enforcement, 8-12

row labels, 3-17, 13-1, 13-3

F

FULL privilege, 3-16, 3-17, 3-19

G

GLBD function, 4-12

granularity, data access, 3-13

GREATEST_LBOUND function, 4-12, 10-8

inverse groups, 14-23

GROUP_READ function, 4-23

GROUP_WRITE function, 4-23

groups

definition, 2-7

example, 2-8

hierarchical, 2-8, 2-13, C-8

inverse, 14-2

parent, 2-7, 2-8, 3-10, 6-17, 6-18, 14-7

read/write access, 3-10

setting authorizations, 3-7

H

HIDE, 4-2, 6-9, 6-10

HIDE option

default, 6-9

discussion of, 8-6

example, 4-3

importing hidden column, 13-4

inserting data, 4-17

not exported, 13-2

per-table basis, 4-9

PL/SQL restriction, C-14

schema level, 8-2

I

Import utility

importing labeled data, 13-3

importing policies, 13-2

importing unlabeled data, 13-4

with Oracle Label Security, 13-2

indexes, 13-7

INITIAL_LABEL variable, A-5

INITIAL_ROW_LABEL variable, A-5

initialization parameters

AUDIT_TRAIL, 11-2

COMPATIBLE, 13-11

INSERT_CONTROL option, 8-3, 8-5, 8-16

inserting labeled data, 4-15, 8-15

INTO TABLE clause, 13-5

inverse groups

and label components, 14-4

COMPACCESS privilege, 14-7, 14-10

computed labels, 14-5

dominance, 14-24

implementation of, 14-3

introduction, 14-2

Max Read Groups, 14-6

Max Write Groups, 14-6

parent-child unsupported, 14-7

read algorithm, 14-8

session labels, 14-12

SET_DEFAULT_LABEL, 14-12

SET_LABEL, 14-13

SET_ROW_LABEL, 14-12, 14-13

user privileges, 14-7

write algorithm, 14-9

INVERSE_GROUP enforcement option

behavior of procedures, 14-16

implementation, 14-4

L

label components

defining, 6-2, 6-12

in distributed environment, 12-4

industry examples, 2-9

interrelation, 2-13

valid characters, 2-3, 6-9

label evaluation process

COMPACCESS read, 3-18

COMPACCESS write, 3-18

inverse groups, COMPACCESS, 14-11

LABEL_UPDATE, 8-18

read access, 3-12

read access, inverse groups, 14-8

write access, 3-14

write access, inverse groups, 14-9

LABEL function, 4-23

label tags

converting from string, 4-7

converting to string, 4-7

distributed environment, 12-4

example, 4-4

inserting data, 4-16

introduction, 2-11

manually defined, 4-4, 4-5

strategy, 13-8

using in WHERE clauses, 4-10

LABEL_DEFAULT option

and labeling functions, 8-7, 8-13

authorizing compartments, 3-7

authorizing groups, 3-8

definition, 8-3

importing unlabeled data, 13-4

inserting labeled data, 4-16

with enforcement options, 8-10, 8-11

with SET_ROW_LABEL, 4-20

LABEL_TO_CHAR function, 4-7, 4-8, 4-11

LABEL_UPDATE option

and labeling functions, 8-7, 8-13

and privileges, 8-7

and WRITE_CONTROL, 8-9

and WRITEDOWN, 3-20

and WRITEUP, 3-16, 3-20

definition, 8-3, 8-4

evaluation process, 8-18

with enforcement options, 8-11

label-based security, 2-1

labeling functions

ALL_CONTROL and NO_CONTROL, 8-10

and CHECK_CONTROL, 8-16

and LABEL_DEFAULT, 8-7, 8-13

and LABEL_UPDATE, 8-7, 8-8

and LBACSYS, 8-14

creating, 8-14

example, 8-13

how they work, 8-14

importing unlabeled data, 13-4

in force, 8-7

inserting data, 4-16

introduction, 3-23

override manual insert, 8-16

specifying, 8-15

testing, 8-13

UPDATE, 8-18

using, 8-13

with enforcement options, 8-10, 8-11

labels

administering, 2-15

and performance, 3-17

data and user, 2-12

merging, 4-13

non-comparable, A-2

relationships between, A-1

syntax, 2-10

valid, 2-11, 4-3

with inverse groups, 14-5

Labels property sheet, 6-2, 6-3

LBAC_DBA role, 6-8

LBAC_LABEL datatype, 8-14

LBACSYS schema

and labeling functions, 8-14

creating additional databases, 13-11

data dictionary tables, 13-7

export restriction, 13-2, C-13

LEAST_UBOUND function, 4-12, 4-14, 10-8

inverse groups, 14-23

levels

definition, 2-4

example, 2-4

setting authorizations, 3-5

LUBD function, 4-12

M

materialized views, 12-7, 12-10

Max Read Groups, 14-6

Max Write Group, 14-6

MAX_LEVEL function, 4-22

MERGE_LABEL function, 4-13, 4-14

MIN_LEVEL function, 4-22

N

NO_CONTROL option, 8-4, 8-5, 8-9

NOAUDIT procedure, 11-3, 11-5, 11-6, 11-8

NUMBER datatype, 4-2

NUMERIC_LABEL function, 10-6

NUMERIC_ROW_LABEL function, 10-7

O

object privileges

and Oracle Label Security privileges, 3-21

and trusted stored program units, 3-21, 10-2

discretionary access control, 1-5

OCI example, A-7

OCI interface, A-5

OCI_ATTR_APPCTX_LIST, A-6

OCI_ATTR_APPCTX_SIZE, A-6

OCIAttrGet, A-6

OCIAttrSet, A-5, A-6

OCIParamGet, A-6

Oracle Internet Directory Administrator's Guide, 5-15

Oracle Policy Manager

administering labels, 2-15

applying policies, 6-3, 9-4

authorizing trusted program units, 6-4

authorizing users, 6-4, 7-1

configuring auditing, 6-4

creating policies, 6-2, 6-8

defining label components, 6-2

identifying valid labels, 6-3

introduction, 6-6

ORDER BY clause, 4-10, 4-11

P

packages

Oracle Label Security, 6-5

trusted stored program units, 10-1

partitioning, 4-5, 13-10

performance, Oracle Label Security

ANALYZE command, 13-7

indexes, 13-7

label tag strategy, 13-8

partitioning, 13-10

READ privilege, 3-17

PL/SQL

creating VPD policies, 1-8

overloaded procedures, 6-13

recreating labels for import, 13-3

SA_UTL package, 10-6

trusted stored program units, 10-1

policies

applying to schemas, 9-3, 9-7

applying to tables, 9-3, 9-4

creating, 6-2

enforcement guidelines, 8-10

enforcement options, 1-12, 3-23, 4-1, 8-2, 8-3, 8-10

managing, 6-8

multiple, 4-3, 7-2, C-13

privileges, 1-5, 1-11, 3-21, 7-14

terminology, 9-1

policy label column

indexing, 13-7

inserting data when hidden, 4-17

introduction, 4-2

retrieving, 4-7

retrieving hidden, 4-9

storing label tag, 2-11

policy_DBA role, 6-4, 6-8, 6-19, 7-1, 7-14, 9-4, 9-7

predicates

access mediation, 3-23

errors, 8-21

label tag performance strategy, 13-9

multiple, 8-21

used with policy, 8-20

privileges

COMPACCESS, 3-16, 3-17

FULL, 3-16, 3-17, 3-19

Oracle Label Security, 3-15

PROFILE_ACCESS, 3-16, 3-19

program units, 3-21

READ, 3-16

row label, 3-19

trusted stored program units, 10-5

WRITEACROSS, 3-16, 3-19, 3-20

WRITEDOWN, 3-16, 3-19, 3-20, 3-22

WRITEUP, 3-16, 3-19, 3-20

PRIVS function, 4-22

procedures, overloaded, 6-12

PROFILE_ACCESS privilege, 3-16, 3-19

R

read access

algorithm, 3-12, 3-17

introduction, 3-10

read label, 3-8

READ privilege, 3-16

READ_CONTROL option

algorithm, 3-11

and CHECK_CONTROL, 8-8

and child rows, 8-16

definition, 8-3, 8-4

referential integrity, 8-19

with other options, 8-11

with predicates, 8-20

READ_ONLY function, 7-6, 7-7, 7-8, 7-9

READ_WRITE function, 7-6, 7-7, 7-8, 7-9

reading down, 3-12

referential integrity, 8-16, 8-19

releasability, 14-2

remote users, 12-3

REMOVE_SCHEMA_POLICY procedure, 9-3, 9-9

REMOVE_TABLE_POLICY procedure, 9-3, 9-5

REPADMIN account, 12-7, 12-10, 12-11

replication

materialized views (snapshots), 12-7, 12-10, 12-11

with Oracle Label Security, 12-7, 12-8

RESTORE_DEFAULT_LABELS procedure, 4-19, 4-21

restrictions, Oracle Label Security, C-13

row label

default, 4-20

row labels

changing compartments, 7-5

default, 3-7, 3-8, 3-9, 4-19, 10-8

example, 3-3

in distributed environment, 12-3

inserting, 4-16

LABEL_DEFAULT option, 4-15, 8-7

privileges, 3-19

restoring, 4-21

saving defaults, 4-21

setting, 4-20, 10-7

setting compartments, 7-3

setting groups, 7-4

setting levels, 7-2

understanding, 3-3

updating, 3-20

viewing, 10-7

ROW_LABEL function, 4-23

S

SA_COMPONENTS package, 6-12

SA_POLICY_ADMIN, 9-1

SA_POLICY_ADMIN package, 9-1

SA_SESSION functions

defined, 4-18

viewing security attributes, 4-22

SA_SYSDBA package, 6-8

SA_USER_ADMIN package

administering stored program units, 10-3

overview, 7-1

SA_USER_NAME function, 4-23, 7-16

SA_UTL package

dominance functions, A-4

overview, 10-6

SAVE_DEFAULT_LABELS procedure, 4-19, 4-21

schemas

applying policies to, 6-3, 6-10, 8-10

default policy options, 6-9

restrictions on shared, C-14

security

introduction, 1-2

standards, 1-3

security evaluations

EAL4, 1-3

security policies

introduction, 1-4

VPD, 1-9

session labels

changing, 4-19

computed, 3-8

distributed database, 12-3

example, 3-3

OCI interface, A-5

restoring, 4-21

SA_UTL.SET_LABEL, 10-7

saving defaults, 4-21

setting compartments, 7-3

setting groups, 7-4

setting levels, 7-2

understanding, 3-2

viewing, 10-6

SET_ACCESS_PROFILE function, C-14

SET_ACCESS_PROFILE procedure, 7-15, 7-16

SET_COMPARTMENTS procedure, 7-3

SET_DEFAULT_LABEL function, 7-12

inverse groups, 14-12

SET_DEFAULT_LABEL procedure

inverse groups, 14-21

SET_GROUPS procedure, 7-4

inverse groups, 14-19

SET_LABEL function

and RESTORE_DEFAULT_LABELS, 4-21

definition, 4-19, 4-23

inverse groups, 14-13

on remote database, 12-4

SA_UTL.SET_LABEL, 10-7

using, 4-19

SET_LABEL procedure

inverse groups, 14-22

SET_LEVELS procedure, 7-2

SET_PROG_PRIVS function, 10-3

SET_ROW_LABEL function

inverse groups, 14-12, 14-13

SET_ROW_LABEL procedure, 4-19, 4-20, 7-13, 10-7, 14-13, 14-14

inverse groups, 14-22, 14-23

SET_USER_LABELS procedure, 7-11

inverse groups, 14-20

SET_USER_PRIVS function, 7-14

shared schema restrictions, C-14

SQL*Loader, 13-5

STRICTLY_DOMINATED_BY function, A-2, A-4, A-5

STRICTLY_DOMINATES function, A-2, A-3, A-4

SYS account

policy enforcement, 8-12

SYS_CONTEXT

and labeling functions, 8-13

variables, A-5

SYSDBA privilege, 11-2

system privileges, 1-5, 3-21

T

tasks, overview, 6-1

TO_DATA_LABEL function, 4-18, 6-2, 6-20

TO_LBAC_DATA_LABEL function, 8-14

triggers, 8-14

trusted stored program units

creating, 10-4

error handling, 10-6

example, 10-2

executing, 10-5

introduction, 10-1

privileges, 3-21, 10-5

re-compiling, 10-5

replacing, 10-5

U

UPDATE_CONTROL option, 8-4, 8-5, 8-17

updating labeled data, 8-17

user authorizations

compartments, 3-6

groups, 3-7

levels, 3-5

understanding, 3-4

USER_SA_SESSION view, 4-22

V

views

access mediation, 3-21

ALL_SA_COMPARTMENTS, C-2

ALL_SA_GROUPS, C-3

ALL_SA_LABELS, C-3

ALL_SA_LEVELS, C-3

ALL_SA_POLICIES, C-4

ALL_SA_PROG_PRIVS, C-4

ALL_SA_SCHEMA_POLICIES, C-4

ALL_SA_TABLE_POLICIES, C-5

ALL_SA_USER_LABELS, C-5

ALL_SA_USER_LEVELS, C-6

ALL_SA_USER_PRIVS, C-6

ALL_SA_USERS, C-5

auditing, C-12

DBA_policyname_AUDIT_TRAIL, C-12

DBA_SA_AUDIT_OPTIONS, 11-7, C-7, C-13

DBA_SA_COMPARTMENTS, C-7

DBA_SA_DATA_LABELS, C-7

DBA_SA_GROUP_HIERARCHY, C-8

DBA_SA_GROUPS, C-8

DBA_SA_LABELS, C-8

DBA_SA_LEVELS, C-8

DBA_SA_POLICIES, C-9

DBA_SA_PROG_PRIVS, C-9

DBA_SA_SCHEMA_POLICIES, 8-12, C-9

DBA_SA_TABLE_POLICIES, 8-12, C-9

DBA_SA_USER_COMPARTMENTS, C-11

DBA_SA_USER_GROUPS, C-11

DBA_SA_USER_LABELS, C-11

DBA_SA_USER_LEVELS, C-12

DBA_SA_USER_PRIVS, C-12

DBA_SA_USERS, C-10

USER_SA_SESSION, 4-22

virtual private database (VPD)

policies, 1-8

W

write access

algorithm, 3-14, 3-17

introduction, 3-9

write label, 3-8

WRITE_CONTROL option

algorithm, 3-13

definition, 8-3, 8-5

introduction, 8-8

LABEL_UPDATE, 8-9

with INSERT, UPDATE, DELETE, 8-9

with other options, 8-11

WRITEACROSS privilege, 3-16, 3-19, 3-20, 8-3, 8-7, 8-17

WRITEDOWN privilege, 3-16, 3-19, 3-20, 3-22, 8-3, 8-7, 8-17

WRITEUP privilege, 3-16, 3-19, 3-20