Presentation Title: Securing the Database Against Unauthorised Attacks
Speaker: Mr Kamil Stawiarski Oracle ACE Oracle Certified Master
Company: ORA-600
Co-presenter: 
Presentation abstract: There will be a 10 minute UKOUG Welcome Video between 08:50 - 09:00 follwed by this session

The live demo, presenting a real-life experience in penetration testing of the consolidated Exadata database environment for one of my customers. In the short session I'll try to show the threats of the consolidation era and how to make the environment more secure.

The key aspect of my presentation will be escalating privileges from CREATE ANY INDEX to executing any command as an oracle user in operating system, through the SQL engine.

Presentation begins: 06/12/2016 09:00
Presentation duration: 60
Presentation content level: 3 (1 = indepth, 5 = strategic overview)
Audience experience: All experience levels
Audience function: Product Expert, Product User, Systems Architect
Speaker biography:  Oracle Database Whisperer, performance maker and story teller. At the moment probably one of the youngest Oracle ACEs and Oracle Certified Masters in the world. Owner of the ORA-600 company and blogger (blog.ora-600.pl). Trainer in Oracle Partner Academy and IT School. Personally a big fan of Terry Pratchett: "Wisdom comes from experience. Experience is often a result of lack of wisdom."
Related topics: Database: Compliance, Audit, Security
Hall: Hall 11A


FileSizeUploaded
oracle_hacking_session.pdf203 KB28/07/2016 10:35:09


Top