[Free] 2018(Jan) EnsurePass Testinsides Oracle 1z0-528 Dumps with VCE and PDF 11-20

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan Oracle Official New Released 1z0-528
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/1z0-528.html

Oracle Database 11g Security Essentials

Question No: 11

Oracle Data Masking Pack allows you to perform which three actions?

  1. Use predefined mask formats

  2. Back up your data

  3. Preview sample data before masking

  4. Define application masking templates

Answer: A,C,D Explanation:

It#39;s not abackupsolution but it has anopportunityto share data, wheresensitiveinformationis masked.

Question No: 12

Based on which four factors can a Oracle Database Vault prevent access?

  1. Time of day

  2. IP address

  3. Program name

  4. Custom-designed factor

  5. Values in a column

Answer: A,B,C,D Explanation:

With Database Vault organizations can define authorization rules based on internal and external factors, suchas ip address, time of day, application being used, authentication type, etc. Database Vault rules can beassociated with over two dozen individual database

commands, such as create table, create view, drop tableand comes with many built-in factors, all of which can be extended via APIs

Question No: 13

Which of the following requires values in a specific column in targeted tables?

  1. Database Vault realms

  2. Database Vault command rules

  3. Virtual Private Database

  4. Label Security

Answer: C Explanation:

VPD Provides column-level security (column masking)

Question No: 14

To implement a rigorous separation of duties policy, you should have separate named accounts defined for which three of the following areas?

  1. Database account management

  2. Database security management

  3. Batch users

  4. Backup

Answer: A,B,D Explanation:

Oracle Database Vault defines the following main responsibilities:

Account management. Account management entails creating, modifying, and dropping user accounts.

Security administration. Security administration covers basic security tasks such as creating realms andcommand rules, setting security policies for database users’ access, and authorizing database users for jobsthey are allowed to perform.

Resource management. Resource management refers to managing the database system but not accessingbusiness data. It includes the following operations:

-Backup operations require a predefined time to perform the backup using predefined tools.

-Tuning and monitoring operations require ongoing performance monitoring and analysis.

-Patching operations require temporary access only during the time the patching takes place

Question No: 15

Which of the following statements about Transparent Data Encryption (TDE) is NOT true?

  1. For a partitioned table, you can have some partitions in encrypted tablespaces and some in non- encryptedtablespaces.

  2. For a partitioned table, you can encrypt a column in some partitions and not in others.

  3. A range-based selection condition can use an index with tablespace-based Transparent Data Encryption(TDE).

  4. An index on a value in an encrypted tablespace does not have to be encrypted.

Answer: A Explanation:

ORA-28346: an encrypted column cannot serve as a partitioning column

Cause: An attempt was made to encrypt a partitioning key column or createpartitioning index with encrypted columns.

Action: The column must be decrypted. ORA-28347: encryption properties mismatch

Cause: An attempt was made to issue an ALTER TABLE EXCHANGE

PARTITION | SUBPARTITION command, but encryption properties weremismatched. Action: Make sure encryption algorithms and columns keys are identical. Thecorresponding columns must be encrypted on both tables with the same salt andnon-salt flavor.

You can create an index on an encrypted column if it has been encrypted without salt. TDE tablespace encryption also allows index range scans on data in encryptedtablespaces. This is not possible with TDE column encryption.

If you need to perform range scans over indexed, encrypted,columns, then you should use TDE tablespace encryption in place ofTDE column encryption.

Question No: 16

Which two of the following are reasons to use Oracle Audit Vault?

  1. To consolidate audit reports from multiple databases

  2. To reduce the performance impact of auditing across multiple databases

  3. To limit space required for audit trails

  4. To ensure consistent auditing across multiple databases

Answer: A,C Explanation:

Audit repository exists for Oracle database (Release 10.2.0.4) to consolidate and manage audit trail records.

By default, ARCHIVELOG mode is enabled in the Audit Vault Server database. The ARCHIVELOG modecopies filled online redo logs to disk. This enables you to back up the database while it is open and beingaccessed by users, and to recover the database to any desired point in time. You should monitor the diskspace usage for the redo logs.

Question No: 17

The data in the primary database is encrypted using TDE. With which type of Data Guard standby must you have a wallet open on the standby server?

  1. Physical standby

  2. Logical standby

  3. Both physical and logical standby

  4. Neither physical nor logical standby requires an open wallet

Answer: C Explanation:

Oracle Data Guard supports Transparent Data Encryption (TDE). If the primarydatabase uses TDE, then each standby database in a Data Guard configuration musthave a copy of the encryption wallet from the primary database. If you reset themaster encryption key in the primary database, then the wallet containing the masterencryption key needs to be copied to each standby database.

Question No: 18

In terms of security, what use case is a classic example of separation of duties?

  1. Denying users access to administrative functions

  2. Denying managers access to employee data

  3. Denying administrators access to data values

  4. Allowing administrators to back up data from only one department

  5. Allowing administrators to back up data from an entire enterprise

Answer: C Explanation:

Separation of duties is denying administrators access to data values.

Question No: 19

Your customer realizes that they must implement more robust and flexible auditing for their enterprise databases. However, based on the specific requirements of their particular industry, they are concerned that they may not be able to achieve their goals with Oracle Audit Vault. Which three features does Oracle Audit Vault provide to allow them to achieve their very specific goals?

  1. You can use Oracle Audit Vault to compare security policies with current settings on target databases.

  2. You can use Orade Audit Vault to create custom audit reports to span audit information from multipledatabases.

  3. You can use Oracle Audit Vault to provide custom auditing for many different types of databases.

  4. You can use Oracle Audit Vault to collect data from multiple types of databases.

Answer: B,C,D Explanation:

This section provides guidelines for selecting the correct Oracle Audit Vault collectorfor the source databases from which you want to extract audit data. In brief, for OracleDatabase,

the type of collector that you select depends on the type of auditing that youhave enabled in the source database. The Microsoft SQL Server, Sybase ASE, and IBMDB2 databases each use one collector specific to each of these database products.

Question No: 20

How do you handle Oracle audit trails after the audit records have been inserted into Oracle Audit Vault?

  1. Audit trails must be deleted manually

  2. Oracle Audit Vault automatically cleans up audit trails after the audit records have been inserted Into theVault.

  3. You cannot delete any audit trails when using Oracle Audit Vault.

  4. You schedule Oracle Audit Vault jobs to clean up audit trails on a scheduled basis.

Answer: D Explanation:

Oracle Audit Vault is integrated with the DBMS_AUDIT_MGMT package on a sourcedatabase. This integration automates the purging of audit records from the AUD$ andFGA_LOG$ files, and from the operating system .aud and .xml files after they havebeen successfully inserted into the Audit Vault repository by the Audit Vault collector.

100% Ensurepass Free Download!
Download Free Demo:1z0-528 Demo PDF
100% Ensurepass Free Guaranteed!
1z0-528 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

Your email address will not be published. Required fields are marked *