In my previous post, I introduced you to the two concepts of Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC). ABAC resolves a number of the limitations associated with RBAC, as I discussed in that post. In this post, I wanted to drill into the architecture underlying ABAC a little bit more.
In simple terms, there are four main parts of the ABAC architecture. These are:
- The Policy Decision Point (PDP) – this (more...)
In a recent post, I explained a little bit about what my new role at archTIS is. archTIS is a company that focuses on the area of Trusted Information Sharing. Trusted Information Sharing is a concept that not too many people would understand the complexities of. In fact, when I first started in my new role I wasn’t aware of just how complex it was myself! To explain all that complexity in a single (more...)
Today I can finally tell you the good news on my new role. December 8th was my last day at Oracle. So what was the good news? I already have a new job, as a technical architect with a small company called archTIS. I saw the job advertised on LinkedIn and applied, spent an hour and a half in a phone interview the next day, got called in to meet the CEO the day after (more...)
Change is probably one of the few constants you can expect in our industry (if that’s not a contradiction in terms!), and one of the biggest changes I have made in my career is taking place right now. I’m moving on – what that means for the future remains unclear at this point in time.
I’ve really enjoyed all the things I did over the past 22 years (well, most of the time anyway! (more...)
In my last post, I walked you through the first part of installing the Oracle Database 12c STIG compliance standards sample code. The next step to using these compliance standards is to associate your Oracle Database 12c databases with these standards. You may recall there are two separate standards in the sample code, one for multitenant databases and the other for conventional architecture databases. The process of associating the databases is the same in (more...)
In a recent post, I announced the release of some sample code that created two new compliance standards for DISA’s Oracle Database 12c Security Technical Implementation Guide. The sample code includes details on how to install the compliance standards, but I wanted to walk you through an example of installing it with screenshots and more commentary than is in the sample code. So let’s start off with some of the assumptions you need to (more...)
It’s been a long time coming, but finally we can announce than Enterprise Manager Cloud Control 13c Release 2 is here! So what are the main new features? Obviously I can’t cover them all in a single blog post, but here are the ones that are highlights to me.
Support for Transport Layer Security 1.2
For our security minded customers, this is functionality that people have been waiting a long time for. Communication between (more...)
One of the most requested features in the compliance management area has been a compliance standard for Oracle Database 12c. As most of you would know, Oracle Database 12c has been out for quite some time, and indeed Larry Ellison has just announced at OOW2016 availability of Oracle Database 12cR2 in Oracle’s public cloud offering. However, as I discussed in another post earlier this year, creating a new STIG compliance standard is not a simple (more...)
One of the questions we see being asked reasonably frequently is how to allow read only access to someone who wants to view database performance issues, using tools such as Real Time ADDM, ASH Analytics and so on. This is generally asked for someone like an application developer, who can use this information to identify performance issues in Production and then fix the root cause in their Development environments.
Well, that’s a reasonable question to (more...)
While I always enjoy getting in front of customers to present on some new and really cool functionality in Enterprise Manager Cloud Control, it’s even better to be in the audience listening to actual customers doing just that! There are a couple of those presentations coming up on Thursday this week at OOW. Unfortunately I can’t be there to listen in, but if you’re interested in learning how to provide scalable and flexible patching solutions, (more...)