OCI Date: 26 1) 2

naele omtono m u Data base Kesonee Mamagen

OLTP
OLAP
Tetrtunm
- Js 0N

- Area
eonaphic
2e
Legiev Local
Region Comprised witn A

Availability Doma tolenant data ceyteo

daa centens
AD -

fault
connee ted
COnnee te
more
Owe on but
ithin heg ion
locatca (ou lateucy ,hij
e a r h otmen 7
to
bmdwidtn nefsonk.

ahadwane am
FD-Fault donmain npi AD to P
Fo rovde
Proviole
within AD
trnehane centens.
infnas dota
Logical
amh. affnity
.

Availibiliky Domam

KeaOm ofa
choas ivS on
Isolate fron each

Phonpi e a l mfvwstmehna
Locahion
Pat Reriolemey not shaned

Compljence tolenam
tvai labiliky 2fatt
Senvic e

Reaje
AD
D AD
 D
Sye behseeu Jwo
Ovoele Po 9uanod.
Avai labi lI Design
HHgh
F a l Donmai
Avoiloabili y Domam

Regim Pain

amo Aecen Mmaaenent Sewire

IAM 1odemK
Hmam
AuthN Usens
Sevices

Les instanee a m d
Tstomte Princip'e -

To a k
kee
on thoje ins tanees to
pPl cations aunnin
aganst otee OCI senvic es.
API Cls
wmam bein, Com be compve
c a n be
ble
Princi
0tnen senvice.
w s t o m e ,, o n

h n o n p s - Co/lechoy dwsens.
oleciode what
Anhoni2ahirn
-

olecioe
we
in t e n
Policies te
pe>missi0m S
kimo t
Specithie 2nop have

To
to 1sa
1 s o late
lafe
-
Logical entty ao
to iso late
Conpantment

enites,
losical mces.
eontYol
acce fon D O

noups licies
Po ompont
Jrex
Resownc
Reso wnces Lelono 0 ajects
Bloek Storag e Databere Sysen
Obyect Stovage Vintunk macme
File Stovo e Contam
Stonase hateuay Anto s ceal^j
Ve N
Bncket
Load Balmeen
Arnto momom DB Tutennet h a e way

OclD LOacle eloud ID

bb1 Go N
<REAum.LRE
TYPE>.
Ocia. CREsouRce ID
USE.<UNIaUE

E FUTURE
enhhes.
a e enhhes
hare
ragion hhat
tad ss h
REALM-A sed of
that ane alloue d
allowe o
entiies
-
AM
Principals sownre

tract
wih o CI
To
oCi API+ SsPK/eLT
key/Using
AntN
- API Sgwing RsA Key Paiv (PE)
senenafc token)
le Strin 3s
Token /0rac
Authanhcat hind
-
H^tm
Ponty APIs

1Am
polic ie
Polic iep
m Atached to compantment
Auth2
A t a c h d fo tenamey

v e r b rsonce-type>
asonce-type>
Lrop-ome
to
Allow whene <eondih'ovd
in locoation)
 con't
-e be applied to ws
es.
Anth
Shonld be opplied mP

<verb>
manag
e lall per nissian
0than a s ,resownee
achoy Vanyy
Useneadt
Pe
t user-specihc.
mete.olath 7
oiwpecf
to list eeome es
jwpec+lability
-

Compamtment
Teneney (Root Compenhn en.

Create fon iso lation

resomce belogs to A m l e comfanz-es

Each
Compartments
Policies = Accen to
nrops +
conantment cam intanact
intaract
c o a n T m e n t
cam
0ne
Resonce
in
witm amothn Cumpantment

mde al>o

are lobol co7vnch

Copontments

m k t p l e neg io
en
com

Resones tvom
compamtment.
Somml

c
Coon
mp an
ra tn
tneey
ytt
Porsible in
level nehn9
Si
Six
 So fhuant Arfned
Nehwovkis (ve r E hi9hsealable
h i y available

VcN 10. 0.0.0/1c)

Pablic Sinbnet(10.0.1.o/21)
FPrivate Subet (10.0. 2.0/24)

CIDR Not hon

Ctale
Tnten Domain Routi-a
Rouhing

Itemet hateway ntane

a NAT battwaj Tnttmet
et
Conly ontbunnol
X no i4teanet
Sevice hateuray

Dynamic Rouh hateway

betheem yown VcN
Private tvahie
defunaho
o e h a n iutenne
amo

On pae m

PYetx

esP ten
los
Rohe Table .

Coh mon Speci he o 9eTa pYio i t y

smon

2ote Terae+ pecife than /0

Dent cp
O.0.0.0/o
NAT 9 attia
DRt
(92168 0 . / 6
 S a m Region
Local Peening
9teva
LPh
Local Pe eniny

Remofe Peern
Use Dynamic Rouhg Cotuny

Netwavk

in different Reg.on

Nesevk

Lorse nm be
DRG V 2

VeN Secumy
Lis s
Sec i h y
Pules
vall
.

Five

ewOrk Seey (nop

Vichrnl nessvk
set+
LApply to Cands in a
vc
Sinsle v
sivs/e eN
n
intnface
ovdesd rotion
A com be somre
NS
i h wles.

lisF
rmles onty
in secwity olesi.
, eIDR
a
tente
2

speci ty
Load Lalonc en
D
Loyen7
7 - hghen lere
high Avnilab.lily HH+P/s ntelizenee
(nspect pecket
Seala bili D vetweY Lo ad 0Sance
Revense Proxy Lajen y
>7 SSL Tenmivahen LteP/uo P
SSL Pornthnogh >Lagen 3
o (ode l a t r

Compte.
OVirhal Macme
Flexible shape
1ane metaA
Chose
OcPU
Dedicated tst

memo7
to Seleet process o v
Ophon
Pay as youjo
AMD
Intel P r e e n t a s l e vM

LA-pe
( m bo ed )
Fntn Ja
PYocesso Low cost
Short ivevms
Rateh Joss
Block vo lnme Fault tolenant
work lo ads

Doot d a t So chaop e
Sca li downh me,
VerhcaX w e d

Ho ri20ntak
- No ex14a
Atosnlin9
eos
OS I m a x
metdaths
Punn shapt
ns tace

Tnstenc e Pao)

scaliy Rk

OS mamajement
acle Liw, Windeuws
OSMS manaemfnt

Patech
Antoma el
no
Packase
mamaS e
Simp lifie
C h a n e

Packesa Manaslenf
Patch Mamas emfn

Pix b95 Patehi

I p o ve peYformanre

LRemovi
LAdd feotuns
and
a n o

V n l n e n a b i l i h e s

Com om
Expo Sne LrokP
im w
ony
Lfov
Storage
Loc NVMe
LLocally ttachad stvase
NVme SSD
g h penfovmante

D lock Volnme
danable
L peasi stnnt,
Remot seaven (wetok)
Ayeo sjze block

mOnn
Crate
Cnae
panh h o Ailessem Ale sys

File Storag e
Lshonad i l e stvage
Ales a d dncctory

Object Sthase
obtet.
photns,
violaos, Tans e

Data M inahin
Sesvic es
Data Tvanafen Disk

Data
TRost A Ppliomre
Storag hateuoaj
Object Stovage
peaformance stovat
Ttemet scale gh
Platform
a objech
D o t mamageo
metrnc
h r o l data
Tnenl for
fov
Regienal, Pubfice

hevs
M u l r i ble stovay e
OC n30whe
OCi B once (e. aape)
ess(e. Capde
Privae
accem fvom

Content KePositov Stachnnd data

d at
S9vnchnsd
& emy
hne
Unstrnc
Hedop /Dat Anny ts
0is
Data /spark/
Prebive/Baekup
DObect
Bumtket
q Namespace

Tier
-stondend /Hot Fmt

Back t
Tnfheqnont teee
Cool

Singe
Avc hive /cold API
Call
Auto Tier ing
Block Velnme.
Pensistant Dnable ctovae
Sithn netuovk Seven.

attaced
wim itonce
wi omce
Can be

Tie reanem
tiak Yo wovk load

Bonic Lone
Longe
2 101s/GD
hoire fov ramdo %
Balomced - Bakanc e d c

6o 10PS/aD

hiahen
Penfovn-ance -
most to dep mamdis
71ops/aB
Highest o domamoli
Ultra ho
Penfuvm m t e
0 225 10Ps/0

RDBMS
Aach e tyPe
eol fo connet
ISCS-ne
Oumt fvom
Arnt fune Penfo rmmce amo m
i s tome e

eveyyption by defalt Poravir talized

oe,
No need toaddihal step
Bvins yOwn key
key OWh
fo a t a c h

I n tvomsit emeJP hoy

Read /write shonable
withot
i Posible
block vo/nme
Resiains
dtec
bleck vo biume DR
a R e p i c a h o n of
Psync
Volme noPS ed fov Volne noup
D
backnp
File sth rage File, Foldan)
Use ceoe EBS
Geneak purpase
fle ss te
senvit e s n CoM touu en
Contonen
Micno
u r e stafe.

dstiluteol Ble ss em
NFS V3
shaned sevice tor compute teevrrie

Dote proechon: Snopshots

m-trait
ad
Securib Daka-at. pest encryphon

MexaHan Seavice
D a t Taasfon Disk
duh dask upto /00 Ts
s a p yon
Dota tranafr sie
Dara eneryptes
> venu hed
>enas ed
Doten ploaded
etin to cwstomeen

D a t a Tramofen ApPliamce
woable chare
ISD TB op
sife
Dat trons fen
Dta eerypfed
fror.
enaedl
> renihed >
Data ploadesl
OTA (NINT S00-88)
Stovage hwtevay Servit e Lonline
instuled ane o r
Linnx Decken PPlomee
datt
d a t centen
moYehost in yewn On-pe mses
a NFS monnpomt
monndpomt
expose
Storage aatway
fo y host hhatt
that Cam be munted
NFS elient.
Supports
a

Database - fapt Provisiami

One nooe vm DB sy4tem

Loica Volume moazn

Hato nathgtova Mangn

Asm
F t Penfovmdnee
Ban Metl D0 system

Tuo no ola Real Applicnhm Cl ter

RAC
Diftenmt f a l t don-ain

Mone

Availabiliy

Exadata DB s * t m
Exadata Infvootmchne
mama ted
Self Drivms
Autoromok) Dabase Eself Securi
Self Repairin
mackine leann1
Weko woe)
Dta
ADW (Antono m0
Troachoy Pocenins)
ATP (Autonomo
Antono0 Datpbonbe

to
to amtona te
amtona ie
Machine Leann
Dostrbre tuminJ
Secuniy
Backp
Update
Dediected
Shaned
Exelusive e r
You Pvevision O
handuson
Manase Only exadatk
Awto nomou DB sot ATP
Snppov e d
Ovacle hondles and AD
exadat tYa
Ausmak

OLTP
ATP BackP
Pateins
ADW
UPa
Provisioni5

Scal /out
Tanr
sec
FanltTo|oante

Oraele Database Bane M eak

Onadle RAAc s2dc PU

768 &0 2 A r
VM M3 OcPU
2 4 OCP 6 4 0 GGRAM 1 4 TL NVMe
F 2 0 G0 RAn
ocnl staYa ,
Lpto 4o TB
Block vo/ Exadeta
 MSL
Host Mys oL DB in t u c lon

prove Secuni
Scale que kly ,checply, effheiently
LReduee total c t f aunenskap

de MysaL Dn
Prod lun 3 No
3 AD r
HighAvailabiliy Syste m acerOjs
FD
stadaow C~pev,test RTO Mn
P 2eno

O L A P

H e a t Wave OLTP

h-pen tormance, n-me

LNes idegnatel
DB Senvic e
accelenator foY MysaL
ney pnformance
Pnformance
acc elenats
mysaL
that
amakgthics amd
byrolen of magitde fov
TVonsae hon auerne.

NoSGL

F u y Manog e o

E lon he
r m m
ce
Pent
high
Moolal flesib;liky
Dot
Acce contro
cost
Low openah nj

Develepo fricnd/y
1ways available
tt7brid clond
Securiy
Oel Vintmalia tioy
Piyico Host3
Physienk Nehrork
tea
_plgsical Dotar en

tune Prote ci
Infvas trnc
Protcction Dedicahn amdo
DPOS
Remediaton
-WAF
S e c n i y Lits Clood Guand

OS omo Wovk load

-

Max Sec ur ty
Dedicated Host Vln enobiliy
S e c t y Advisor
Ba rion
OS mmagement

IA

Data Protechioy
Eneryphon
emenf
am ag
Key
Key Vanwlt

- Datm Safe
Clond nanol

Antbmat Remiianen

Tangeth Detectors Pro blewms Re»fondo

P b lic itunte Stop
Pnblie Bucket
Jtenmce
Compontent
Suspiciow IP
-Disable
backef
Suspen
Usen
Secnity Zone
applieod in Com pantment
Rule apglied (policies)
L Thet comt
Secuihy Advisor violateo
mle in secwnty
shou t e rteps to fol(ou 20n

Valn enabiliky Sconniug

Scannia Recipe
cleck fov Vn
Ldaly
Povt

ScawiJ
Lweekl9
Report od
Risk level
Aesca
b a n eS c a n n

Vanlt
-Centroly mamazes keys a cedenhial,
key omd Seeetb not expoeol in cook
0Y In c0nha.
 StiC Asymetric
Protecion AES, PsA
Sofhwon ECDSA
Hondwoe
dgit sign
Secuvi Masten
Model(
Secnriy

Can Ro ta e key Vamlt

master key
Mon ttn key

Enve lop bnrypho

Manten kej Dota key

Sept delee

3loc

WAF-Web Applicahiov
fivewal

Mulh clomd
XSS Seavice.

en 7 sali
Htm iuj ecdo
Cck
Pack Das tio
Use aceen centyot AM
eIDR allo ist
P a dben

Provide
(ocahon e T i c e areep

TpYivak nesoace
Yo intennef