In this paper we summarize good practices on how to achieve compliance for an Oracle database in combination with an ERP system We use an integrated approach to cover both the management of vulnerabilities (preventive measures) and the use of logging and auditing features (detective controls). This concise overview focusses on the combination Oracle and SAP and it's dependencies, but also outlines security issues that arise with other ERP systems. Using practical examples, we demonstrate common vulnerabilities and coutermeasurcs as well as guidelines for the use of auditing features. © 2009 Vieweg+Teubner | GWV Fachverlage GmbH, Wiesbaden.
CITATION STYLE
Hölzner, S., & Kästle, J. (2009). Managing vulnerabilities and achieving compliance for oracle databases in a modern ERP environment. In ISSE 2008 - Securing Electronic Business Processes: Highlights of the Information Security Solutions Europe 2008 Conference (pp. 296–306). https://doi.org/10.1007/978-3-8348-9283-6_31
Mendeley helps you to discover research relevant for your work.