Newsletter:

Skip Navigation LinksHome > News > Security > Oracle unshakeable on unbreakable promise

Site Map |

Oracle unshakeable on unbreakable promise

By Siobhan Chapman
1 January 2000 12:00AM
Tags: oracle | unshakeable | unbreakable | promise

Oracle's famous promise to make its products “unbreakable” has made it a target for malicious hackers, said Mary Ann Davidson, chief security officer for the company.

Talking to InformationWeek Australia at OracleWorld 2003 in San Francisco, Davidson said that after the campaign was launched Oracle detected a huge jump in port scans of Oracle's network from 2,000 a week to 30,000.

“When we launched the campaign, we were challenged by a number of countries who asked 'how could you say that?'. We were really flinging down the gauntlet.”

While she conceded that absolute security was not possible, Davidson said “unbreakable” was really about assurance, something that customers were looking for. It also raised the industry bar for developing software that can withstand harsh security evaluation.

Davidson said Oracle had a team of ethical hackers within the company that looked for security vulnerabilities on products that were under development. This team reports directly to her.

Davidson believed software vendors had a responsibility to create and maintain security on their products. “On a fundamental level, you can't outsource security,” she said. “There isn't a third party product you can buy to save you. You can buy anti-virus software and firewall, but people still have to patch and vendors still have to create patches.”

“The biggest issue in security today is the cultural problem,” Davidson said.

As part of her role as CSO, Davidson has had to infuse such a culture of security amongst her staff and developers. “We already had a good nature of security within the company, as the company that supplied the database to the Central Intelligence Agency (CIA). When you're guarding the nation's secrets, security permeates your culture.”

According to Davidson, security is an important element of Oracle's newly launched 10g product offering, particularly surrounding identity management.

Davidson also said Oracle could “look at acquisitions [in security in the future] as a potential to enhance its strength”.

Siobhan Chapman travelled to OracleWorld 2003 in San Francisco as a guest of Oracle.

   


Ads by Google


Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 


 
Tripwire - Click here to win an iTouch

Tags

acquisition bea boffins buys database displays fixes management microsoft middleware offer oracle plans promise security services snaps social software wins


Product Reviews

Lieberman Software Enterprise Random PM
Star Rating
The Lieberman Software Enterprise Random Pass­word Manager is a full-on password manager and randomiser for...
Proginet Corporation SecurForce
Star Rating
Proginet SecurForce is a little bit of a horse of a different color for this month's Group Test.
Siber Systems RoboForm Enterprise
Star Rating
On the surface, RoboForm Enterprise starts out looking like a single sign-on product, but that is just on the...
Symark International PowerBroker
Star Rating
The Symark PowerBroker is a policy-driven, privileged access control application.
Symark International PowerKeeper
Star Rating
The Symark PowerKeeper is a hardened appliance. It comes with a sealed operating system that provides a...
iTnews 2009 Job Survey

TopTopics
(9415) -  top
(3658) -  microsoft
(2662) -  terria
(2490) -  telstra
(2384) -  company
(2379) -  broadband
(2240) -  content
(2176) -  data
(1932) -  isp
(1865) -  acma
(1845) -  nbn
(1686) -  filtering
(1620) -  internode
(1534) -  voip
(1468) -  centre