Oracle Database 12c Data Protection and Multitenancy on Oracle Solaris 11 Xiaosong Zhu Senior Software Engineer Copyright © 2014, Oracle and/or its affiliates.

Slides:



Advertisements
Similar presentations
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any.
Advertisements

Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Your customer as a segment of one That changes every second! Hein Van Der Merwe Chief.
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. 1.
Internet of Things Security Architecture
Oracle Universal Content Management and Storage Systems
Virtualization of Fixed Network Functions on the Oracle Fabric Krishna Srinivasan Director, Product Management Oracle Networking Savi Venkatachalapathy.
High Tech Executive Discussion New Industry Solutions to Shape Your Future Rosh Dawes, Equinix Joseph Ahn: Principal Consultant, Samsung SDS Jaechul Lee:
A Java Architecture for the Internet of Things Noel Poore, Architect Pete St. Pierre, Product Manager Java Platform Group, Internet of Things September.
Oracle Cloud Marketplace Neelesh Gurnani Director, Product Development Arif Khan Director, Product Management September 29, 2014 Copyright © 2014, Oracle.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Oracle SQL Developer What’s New in Version 4.1 Jeff Smith
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Advanced Metadata Modeling Modeling for the Oracle Business Intelligence Cloud.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. |
Create a DBaaS Catalog in an Hour with a PaaS-Ready Infrastructure
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Introduction and Update: Oracle Hyperion Financial Close Management CON8536 Richard.
Turbocharge Your SAP Environment on Oracle SuperCluster [THT11481]
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Safe Harbor Statement The following is intended to outline our general product direction.
CON Software-Defined Networking in a Hybrid, Open Data Center Krishna Srinivasan Senior Principal Product Strategy Manager Oracle Virtual Networking.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | 2 Hidden Gems of APEX David Gale Software Engineer Oracle Application Express November,
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Oracle SQL Developer For the DBA Jeff Smith
The Safe Harbor The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated.
Best Practices for Supporting Oracle Hyperion EPM and Business Intelligence Solutions Mitra Veluri Senior Principal Technical Support Engineer David Valociek.
Best Practices for Upgrading Oracle PeopleSoft Environments
American Airlines AAdvantage®:
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Title Slide without Picture Subtitle Presenter’s Name Presenter’s Title Organization,
Discover the Latest in Partner Training for Solutions Specialists Ian Reed Sr. Director, Partner Enablement Dana Hutanu Director, Partner Enablement WWA&C.
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. JD Edwards Summit The Newest JDE Module – Rental Management Joel Sandberg Sales Consultant.
© 2009 Oracle Corporation. S : Slash Storage Costs with Oracle Automatic Storage Management Ara Vagharshakian ASM Product Manager – Oracle Product.
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. 1 Preview of Oracle Database 12 c In-Memory Option Thomas Kyte
Getting Started with Oracle Compute Cloud
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. JD Edwards Summit PaaS from an Applications Perspective Charles McGuinness Director,
Oracle Confidential – Internal/Restricted/Highly RestrictedCopyright © 2014, Oracle and/or its affiliates. All rights reserved. | Oracle Identity Management.
Application Express 4.1 New Features Hilary Farrell, Principal Member of Technical Staff, Oracle.
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 12 1.
1Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 8 Reporting from Contract.
A New IMS-Like Architecture for Enterprise Applications Reid Stidolph Master Principle Solutions Architect Communications Global Business Unit October.
Oracle Application Express 3.0 Joel R. Kallman Software Development Manager.
RMB Billing UX Design Concepts / Proposals Peter Picone.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Improving Agility in Product Development and Pricing to Gain a Competitive Edge.
Hadoop 2 cluster with Oracle Solaris Zones, ZFS and unified archives Orgad Kimchi - Principal Software Engineer September 29, 2014 Oracle Confidential.
1Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 8 Contract Management.
CON Software-Defined Networking in a Hybrid, Open Data Center Krishna Srinivasan Senior Principal Product Strategy Manager Oracle Virtual Networking.
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. JD Edwards Summit Really Cool Demo Stuff – 2015 Edition!!!!! For demo content, please.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Deploy Infrastructure Faster with Oracle’s Enterprise Cloud Infrastructure- ECI October.
1Copyright © 2011, Oracle and/or its affiliates. All rights reserved.
1Copyright © 2011, Oracle and/or its affiliates. All rights reserved.
No-Compromise Virtualization: Making Your Data Center Cloud Efficient, Scalable, and Flexible Michael Ramchand Platform Technical Director Oracle EMEA.
Workforce Scheduling Release 5.0 for Windows Implementation Overview OWS Development Team.
Build Mobile Apps for Oracle E-Business Suite with Oracle Mobile Platform Bruce Bailey Principal Mobile/Social Solutions Consultant Jagadeesh Maira Senior.
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Planning & Budgeting Cloud Service (PBCS) Overview Business Analytics Product Group.
WebCenter in Education & Research A Transformation in Digital Business Session: CON7709 Golden Gate C3 Room, Marriott Marquis Moderator: Kevin Roebuck,
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | EPM Top Trends 2015.
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. JD Edwards Summit Recruit and Learn Solutions Extend HR into the Cloud Marie Scott.
Travel and Transportation General Session and Industry Excellence Awards Vijay Anand, Oracle Sundar Swaminathan, Oracle September 30, 2014 Copyright ©
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 12 1.
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 5 Lifehacks for the Apex Development environment Five frameworks you should use.
CON8473 – Oracle Distribution of OpenStack Ronen Kofman Director of Product Management Oracle OpenStack September, 2014 Copyright © 2014, Oracle and/or.
Oracle Java Cloud Service Oracle Develop July 2013.
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | What You Need to Know About User Defined Objects (UDOs) With Tools Release 9.2.
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Daddy, what's a middle wear? An incredibly oversimplified explanation of what Middleware.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. |
OpenWorld 2018 Accelerate Your Success on Oracle Cloud Infrastructure with Applications Unlimited Support Viviana Tilita Senior Technical Support Engineer.
Assessing the Security of the Cloud
OpenWorld 2018 How to Combine Data from Source Sites
JD Edwards Support and Oracle Cloud Infrastructure: A Successful Path to Oracle Cloud
Confidential – Oracle Internal/Restricted/Highly Restricted
OpenWorld How to Prepare Data from Business Intelligence Cloud Service
Data Security for Microsoft Azure
1.
Oracle Java SE Subscriptions; Protect Your Investment in Java SE
Presentation transcript:

Oracle Database 12c Data Protection and Multitenancy on Oracle Solaris 11 Xiaosong Zhu Senior Software Engineer Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |

Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Program Agenda Database Multi-tenancy on Solaris 11 Secure Multi-tenancy with Data Protection HOL9762, 10/1/14, 13: :15, Nikko Ballroom I 1 2 3

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Business Drivers Why Databases Multi-tenancy Requirements Tenant isolation Security Easy adoption Manage as one Economic Pressures Security Pressures Consolidate to cut costs Reduce power Reduce floor space Reduce hardware Deliver end-to end security database Database isolation Resource isolation Data security Cloud

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Secure Database Multi-tenancy on Oracle Solaris Solaris Zones share servers and OS Database 12c Multitenant share servers, OS and database Increasing Consolidation Increasing Isolation

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Using Solaris Zones to Set up a Secure Multitenant Environment Oracle Solaris OS built-in virtualization Safely and securely run multiple applications on a single system One OS instance for all zones Rapidly scale to meet growing demand Global Zone Oracle Solaris 11.2 dbzone2 Oracle DB 11g R2 vnic2 C2t1d0 dbzone1 Oracle DB 12c vnic1 C2t0d0 C2t2d0 C2t3d0 CPU Mem CPU Mem

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Oracle Database 12c Multitenant Pluggable Databases (PDBs) Multitenant Container Database cdb1 Root pdb pdb pdb PDBs Root CDB Oracle Database 12c offers built-in database- level multi-tenancy, supported by a unique architecture known as “Plug-able Databases” Plug-able databases are self-contained database instances that run on a shared Oracle 12c Database kernel instance, allowing for extreme database mobility (they may be moved from one database kernel instance to another via a simple migration operation) A PDB feels and operates identically to a non- CDB

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Solaris Zone and Database 12c multitenant Solaris Zones – Low overhead – OS isolation – Flexible resource management – Rapid scale – Secure Shared and Isolated Database 12c Multitenant – Minimize CapEx – Minimize OpEx – Maximize Agility – Ease of Adoption Number of Tenants Number of Users per tenants Per-tenant value-added services Isolated Shared

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Program Agenda Database Multi-tenancy on Solaris 11 Secure Multi-tenancy with Data Protection HOL9762, 10/1/14, 13: :15, Nikko Ballroom I 2 1 3

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | A single security breach – Sutter Health data breach in 2011 – More than 4 million patients information stolen Massive Business Impact – Consumer confidence lost – Sued for $1 billion following data breach 11 Why We Need Data Protection?

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Secure Multi-tenancy with Data Protection on Solaris Two Levels of Data Protection Database Encryption Exernal Security Module (Software/Hardware Keystore) TDE Master Encryption Key Encrypt File System Encryption Database 12c pdb Encrypted ZFS

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | DB Secure Data on Solaris Encrypted ZFS Filesystem On-disk encryption for ZFS data Block-level encryption, activated at the dataset / file system creation time Offers: – Protection against theft of physical storage and man-in-the- middle attacks on the SAN – Secure deletion Security check against passphrase or numeric key performed when mounting the file system At Rest Protection -- File System Encryption ZFS App ZFS Encrypted ZFS PDB ZFS …

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Oracle Database Transparent Data Encryption Database Encryption Encrypts columns or entire application tablespaces Protects the database files on disk and on backups Compatible with applications, no changes required Crypto acceleration Solaris 11 Leverage hardware crypto of SPARC T4/T5 & Intel AES-NI Encrypted Data Managed Keys OS User Attempt to Directly Access Tablespace File Contents Unauthorized Access to Data Blocked By Encryption Tablespace files (usershol.dbf) Oracle Database

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Data Protection TDE and ZFS Encryption – 2-tier key architecture – Provide transparent encryption and decryption – Can leverage hardware crypto accelerator ZFS Encryption – Can use for other databases than Oracle Enterprise Edition (MySQL) TDE – OS and File System agnostic – Agile on KeyStore (wallet) management

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Program Agenda Database Multi-tenancy on Solaris 11 Secure Multi-tenancy with Data Protection HOL9762, 10/1/14, 13: :15, Nikko Ballroom I 3 1 2

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | HOL9762 Oracle Database 12c Data Protection and Multitenancy on Oracle Solaris 11 Venue / Room: Hotel Nikko - Nikko Ballroom I Date and Time: 10/1/14, 13: :15 Agenda: Exercise 1: Using Solaris Zones to Set up a Multitenant Database Environment Exercise 2: Exploring Oracle Database 12c Multitenant Exercise 3: Using Oracle Transparent Data Encryption with Solaris Cryptographic Framework

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | References Oracle Multitenant Oracle Solaris Administration: Oracle Solaris Zones, Oracle Solaris 10 Zones, and Resource Management Oracle Solaris Administration: Oracle Solaris Zones, Oracle Solaris 10 Zones, and Resource Management How to Manage ZFS Data Encryption Oracle Advanced Security Transparent Data Encryption Best Practices Oracle Advanced Security Transparent Data Encryption Best Practices Oracle Database 12c Transparent Data Encryption

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.