SV-224189r508023_rule
V-224189
SRG-APP-000313-DB-000309
EP11-00-007000
CAT II
10
Deploy EDB Postgres Advanced Server Row-Level Security (see link below) or a third-party software, or add custom data structures, data elements and application code, to provide reliable security labeling of information in process.
https://www.enterprisedb.com/docs/en/11.0/EPAS_BIP_Guide_v11/Database_Compatibility_for_Oracle_Developers_Built-in_Package_Guide.1.31.html#pID0E0UUD0HA
If security labeling is not required, this is not applicable (NA).
If security labeling requirements have been specified, execute the following SQL as enterprisedb:
SELECT * from ALL_POLICIES where OBJECT_NAME = '<table name>';
If a policy is not enabled for the table requiring security labeling, this is a finding.
If security labeling is required and not implemented according to the system documentation, this is a finding.
If security labeling requirements have been specified, but neither a third-party solution nor an EDB Postgres Advanced Server Row-Level security solution is implemented that reliably maintains labels on information in process, this is a finding.
V-224189
False
EP11-00-007000
If security labeling is not required, this is not applicable (NA).
If security labeling requirements have been specified, execute the following SQL as enterprisedb:
SELECT * from ALL_POLICIES where OBJECT_NAME = '<table name>';
If a policy is not enabled for the table requiring security labeling, this is a finding.
If security labeling is required and not implemented according to the system documentation, this is a finding.
If security labeling requirements have been specified, but neither a third-party solution nor an EDB Postgres Advanced Server Row-Level security solution is implemented that reliably maintains labels on information in process, this is a finding.
M
4107