Wednesday, 28 October 2015 14:21

Oracle is securing the cloud: Ellison


Oracle has gone along way towards providing a secure cloud, chairman and CTO Larry Ellison suggested at Oracle Open World today. Low-cost dedicated cloud compute resources were part of his story.

"The current state of the art is not getting it done," he said, pointing to the tens of millions of credit card numbers stolen from retailers, the extensive information contained in the records stolen from the US government's Office of Personnel Management, and notorious malware such as Heartbleed and Venom.

But the Security in Silicon features in Oracle's new SPARC M7 processor mean data can be kept encrypted with practically no performance hit (so there's no good reason for failing to encrypt data), and also prevent applications accessing memory that's not allocated to them.

Heartbleed worked by tricking the system under attack into transmitting the contents of memory following the locations that it was supposed to be sending, which the M7 prevents from happening.

Encryption is always on in Oracle's cloud, said Ellison, and Oracle Key Vault means customers can keep their encryption keys and other security-related items on their own premises.

He said companies should ask cloud providers 'Can your engineers have access to all our data? Yes or no?'

"The answer is almost always yes," he said, but "Nobody at Oracle... can read our customers' data I the cloud" - presumably if those customers are using Key Vault.

Other security-related services and features mentioned by Ellison included Database Vault (the separation of technical decisions about the database from issues like access control), Audit Vault (all log entries are stored for the customer to examine), Database Firewall (prevents SQL injection), Data Masking and Subsetting (provides a copy of a database for development and test purposes with selected fields changed to protect security and privacy but in a way that they still meet any validation checks in the program).

Some organisations either are uncomfortable with the idea of shared resources, or there may be a regulatory barrier to their use. For such customers, Ellison announced that Oracle now offers dedicated servers at half the price of AWS shared servers.

The company already offers archive storage at US$0.001/GB/month, which he said was one-tenth of AWS's rate, but a new feature is that it can now be used in conjunction with on-premises systems as part of hierarchical storage management.

And for customers who like the idea of having their on-premises systems as similar as possible to those used in the Oracle Cloud in order to make it as easy as possible to move workloads back and forth, Ellison announced the Oracle Private Cloud Machine for PaaS and IaaS.

Taking responsibility for the name, he joked "we have half the reference manual in the name itself."

This is just the first in a series of Private Cloud Machines, Ellison said: "It's a fundamental part of our strategy."

Disclosure: The writer attended Oracle Open World as a guest of the company


You cannot afford to miss this Dell Webinar.

With Windows 7 support ending 14th January 2020, its time to start looking at your options.

This can have significant impacts on your organisation but also presents organisations with an opportunity to fundamentally rethink the way users work.

The Details

When: Thursday, September 26, 2019
Presenter: Dell Technologies
Location: Your Computer


QLD, VIC, NSW, ACT & TAS: 11:00 am
SA, NT: 10:30 am
WA: 9:00 am NZ: 1:00 pm

Register and find out all the details you need to know below.



iTWire can help you promote your company, services, and products.


Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]


Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.



Recent Comments