Skip Headers
Previous
Previous
 
Next
Next

About the Security of Dimensional Data in Oracle Database

Your company's data is a valuable asset. The information must be secure, private, and protected. Analytic data is particularly vulnerable because it is highly organized, easy to navigate, and summarized into meaningful units of measurement. When you use Oracle OLAP, your data has the security benefits of Oracle Database.

Security Management

Because you have just one system to administer, you do not have to replicate basic security tasks such as these:

The cornerstone of data security is the administration of user accounts and roles. Users open a connection with Oracle Database with a user name and password, and they have access to both dimensional and relational objects in the same session.

Types of Security

Users by default have no access rights to an analytic workspace or any other data type in another user's schema. The owner or an administrator must grant them, or a role to which they belong, any access privileges.

Oracle OLAP provides two types of security: Object security and fine-grained data security policies.

About the Privileges

Using both object security and data security, you can grant and revoke the following privileges:

Users exercise these privileges either using SQL Developer to create and administer dimensional objects, or by using SQL to query them. They do not issue commands such as SQL INSERT and UPDATE directly on the cubes and dimensions.

Layered Security

For dimensional objects, you can manage security at these levels:

The privileges are layered so that, for example, a user with SELECT data security on Software products must also have SELECT object security on the PRODUCT dimension and the Global analytic workspace. Users also need SELECT privileges on the views of the dimensional objects.

You administer security on views for dimensional objects the same as any other views in the database.