How is Oracle Database Firewall (ODF) used to protect applications from attacks such as SQLInjection?
A.
ODF is an option for the Oracle Database. A DBA configures this option to inspect database
commands and compare them with a set of known attacks. An ODF agent periodically downloads
the latest signatures in order to keep up with the latest known types of attacks.
B.
ODF is a feature of Oracle Advanced Security. A database security administrator configures
each database realm with a set of acceptable ports and protocols from which database clients can
connect. Valid connections are continuously monitored for suspicious activity.
C.
ODF is an agent based secure connection component that is installed on the database and on
the clients. It creates a VPN-like connection between the two that greatly reduces the likelihood of
man-in-the-middle and SQL-injection attacks. An administrator installs ODF and configures it for a
specific environment.
D.
ODF is a stand-alone product that is installed in between the client and database. It monitors
and/or blocks SQL statements, comparing them against a set of known good or known bad
statements.
Explanation:
Oracle Database Firewall (ODF) – ODF is the first line of defense for both Oracle
and non-Oracle databases. It monitors database activity on the network to help
prevent unauthorized access, SQL injections, and other forms of attack. ODF uses
positive (white list) and negative (black list) security models to validate SQL
commands before they can reach the database.
The ODF instances act as a firewall for incoming SQL
traffic. Each instance can handle multiple downstream databases, and the instances are
configured for high availability. SQL traffic must pass through the firewall boxes in
order to reach the databases.
ODF protects Oracle, MySQL, Microsoft SQL Server, IBM DB2 for Linux, Unix, and Windows, and
Sybase databases
Reference: Oracle Reference Architecture,Security, Release 3.1