Please share with the community what you think needs improvement with Oracle Audit Vault.
What are its weaknesses? What would you like to see changed in a future version?
We would like to see the ability to administer and manage the solution through Enterprise Manager 13c, and development of the dashboards that are generally missing. The system needs to be easy to manage, especially in terms of space management. There is little to no technical references and use cases pointing to the resolution of technical challenges during implementation. Better documentation would be helpful.
One feature that was missing when we tried to update was the network activity analyzer. We found a request going through the database file before reaching the database. We don't have a database file in the middle. If it's possible to have that database file to analyze what's going on inside the network, it would be better. Some of our customers were asking about the latency. When the application wants to get to the database, the database file is going to give some latency in operations. The additional features we need are to be able to have the database firewall to scan the network to get the information from the database. I also want the database firewall to be able to block services with more granularity.
Right now, the ownership of the database is automatically given to the database administrator. I would like to have a software solution, separate from the Oracle product itself, to assign ownership of the database to a specific team, being our security team, rather than the default owner. One feature that is missing is the ability to have a secret server that is always encrypted. I would like to see this in the next release of this solution.
The reporting is an area of the solution that needs to be improved. Customized reporting is something that we are struggling with, and it is quite tough for us. Every time we need to prepare a custom report, we have to involve the vendor. This is unlike other solutions where the reports are easy to customize. Another problem with reporting emerges on the topic of compliance and certain international standards. The standard set of reports do not provide sufficient details for the PCS and ISO standards. It is important to have better integration with most of the tools to manage unstructured data or SIM solutions. If we change vendors for our SIM then we want to have the best possible support.
One of the biggest challenges that we are facing is the inability to use more than one account for the platform, so the whole organization cannot make their own compliance audits at their own pace. I think that's one feature that really is giving us a bit of a problem. That is one of our biggest challenges. The fact that it doesn't audit the network is also quite a downfall for the product. Maybe it should be improved to allow one to log on to network devices and do audits to check compliance at that level. Finally, the ability to integrate with well-known applications like SAP, Microsoft, and common ERP would be helpful. If it included templates that are used for audits that can be used in those platforms and checking compliance, that would be really helpful, because half the time there isn't enough documentation to help someone check the compliances of specific applications. The second bit is the ability to audit middleware, like application servers and spatial and detection platforms. That is quite lacking in this product.
This kind of solution should supply more analytical data for the traffic that comes in. I think that that side is not as strong as some other products. However, it is stronger in other areas and superior in some ways for security. The Oracle product monitors the database and not the operating system as well which is an area that can use improvement.
Different things should be improved: * The migration from an old version to a newer version is not that easy * Database grouping also should be improved, and * The reporting.