Oracle Data Protection - 1. část

Jaroslav Malina
A&C Cloud Systems
April 2021
Data protection introduction
1 Copyright © 2020, Oracle and/or its affiliates. All rights reserved. |

The following is intended to outline our general product direction. It is intended for information
purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any
material, code, or functionality, and should not be relied upon in making purchasing decisions. The
development, release, timing, and pricing of any features or functionality described for Oracle’s
products may change and remains at the sole discretion of Oracle Corporation.
Safe harbor statement
Copyright © 2020, Oracle and/or its affiliates. All rights reserved.
2

Data Strategy
Will be Critical
to a Successful Digital Transformation
And Surviving todays Challenges
Copyright © 2020, Oracle and/or its affiliates. All rights reserved. |

Of course depends on importance of data
And it is very complex risk vs. cost problem
Why to protect your data?
4
|

5
|

6 Copyright © 2020, Oracle and/or its affiliates. All rights reserved.
|

You need to cover all areas and ensure the level of protection is equal – your
weakest area is determining the total level of protection
How to protect your data?
7
|

Copyright © 2020, Oracle and/or its affiliates
8
• Is my database configured to reduce risk?
• Has my database drifted away from its approved configuration?
• Who are my highest-risk users?
• What are those users doing?
• What activities do I audit?
• How do I manage the audit trail?
• What types of sensitive data do I have?
• How much sensitive data do I have?
• Can I minimize the amount of sensitive data I’m responsible for?
• How is my DB infrastructure protected?
• How is the High Availability secured?
• What is a disaster recovery architecture and policy?
• Etc.
Protecting Data is Important

There is very well defined architecture and best practice how to do it
#1 - Oracle DB instance
9
|

Audit Data & Event
Logs
Audit Vault
Alerts
Reports
Policies
Network Encryption
Oracle
Key Vault
Transparent
Data Encryption
DF11233 U*1
$5Ha1qui %H1
HSKQ112 A14
FASqw34 £$1
DF@£!1ah HH!
DA45S& DD1
Discover Sensitive Data
Data Masking and Subsetting
Test Dev
Data Redaction
Database Vault
Users
Applications
Database Firewall
Virtual Private Database
Label Security
Real Application Security
Events
Data Driven Security
Database Security Controls
Detect
Prevent
Assess
Maximum Security Architecture

11
Data Safe
Audit …..
Users Discover
Assess Mask
∞

Data Safe – Database Security Control Center
Delivers a unified set of essential security services
for Oracle Databases
Mitigates user, data, and configuration risk
Helps demonstrate regulatory compliance
Cloud service – provides value immediately
Requires no special security expertise
Available for ALL your Oracle
Databases – cloud and on-premises
Audit …
Users Discover
Assess Mask
∞
12
SE
EE

13
Oracle Data Safe Homepage
Oracle Data Safe Documentation
Ask Tom Webcast
More
Information

There is very well defined architecture and best practice how to do it.
Best option is to use Exadata – developed by Oracle to run Oracle DB
#2 - Infrastructure for Oracle DB
|

Data protection terminology
Recovery point and recovery time objectives
15 Copyright © 2020, Oracle and/or its affiliates |
Recovery Point Objective (RPO)
Tolerance for data loss (sec’s, hours, days); determines
frequency of backups and replication approaches
Recovery Time Objective (RTO)
The shorter the Recovery Time Objective (RTO) the
quicker you get back to business
Data Loss
(Recovery Point Objective)
Downtime
(Recovery Time Objective)
Hours Minutes Seconds
Weeks Days Hours
Minutes
Seconds Weeks
Days

How to Protect Data and Systems from Outages
Planned and unplanned
16
High Availability
• Protect from localized failures (servers,
bugs, …)
• Local redundancy
Disaster Recovery
• Protect from site failure (entire data
center)
• Site redundancy
Copyright © 2020, Oracle and/or its affiliates |

• Highest availability
- Auto, fast failover to running instance(s)
- Zero-downtime rolling upgrades
• Highest ROI
- All instances active (no idle resources)
- Applications run unchanged
• Scalability-on-demand
- Add, change capacity online
- Ideal for database consolidation
• Fleet patching and maintenance
High Availability (HA)
Localized protection with Oracle Real Application Clusters (RAC)

• Basic DR (included with DB EE)
- License primary and secondary sites
• Active-passive
- Standby is used only for failovers
• Automatic failover to Standby site
• Zero / near-zero data loss
• Continuous data validation
• Simple migrations and upgrades
Disaster Recovery (DR)
Site failover with Oracle Data Guard (DG)
18
Primary (NY) Standby (SF)
Sync

• Advanced DR
• Active-active*
- Queries, reports, backups
- Occasional updates (19c)
- Assurance of knowing system is operational
• Automatic corruption repair
• Rolling upgrades
• Application continuity
• Zero data loss across any distance
Site failover with Oracle Active Data Guard (ADG)
19
Primary (NY) Active Standby (SF)
Sync
*Read only

• Advanced, flexible DR
• Licensed tech
• Active-active
- Full, multi-master, bi-directional replication
- Full read-write access
• Heterogeneous
• Zero downtime DB maintenance and
platform migration
• Assurance of knowing system is
operational
Site failover with Oracle GoldenGate (GG)
20
Primary (NY) Primary (SF)
Bi-directional
sync

MAA Reference Architectures
Meet Downtime (RTO) and Data Loss (RPO) SLAs
Reduced
downtime
and
data
loss
Bronze Single instance + Backup Dev, test, prod.
Silver Bronze + HA clustering Prod. / departmental
Gold Silver + Disaster recovery Mission critical
Platinum Gold + Zero data loss and zero downtime Extreme critical
MAA
reference architectures
Topology Suitable databases
Addresses Service Level Agreements (SLA) for data loss and downtime
during planned and unplanned outages

Scale-out design based on proven Oracle Database technology
§ Database server resources scale by over 140X
§ Storage server resources scale by over 160X
Runs faster by moving the compute to the data
§ Much faster than all-flash arrays; not limited by SAN bandwidth
§ Requires owning the full stack; can’t be solved in storage alone
An Exadata X8M rack delivers 560 GB/sec to any server
High availability based on proven technologies and MAA best practices
Oracle Exadata X8M scale-out architecture
Performance and capacity scaling with no single point of failure
Exadata
DB Servers
Exadata
Smart Storage
NW fabric
22

Traditional technologies for Backup & Restore are not keeping pace
with recent IT technologies development and as it is
« LAST MILE OF DEFENCE»
it requires new approach
#3 - Oracle DB Backup & Restore
23
Copyright © 2019, Oracle and/or its affilites. All rights reserved.

60%
of all restores failed
Failed
4,000
backups failed
per month
June
7
XXXXX
XXXXX
8
XXXXX
XXXXX
9
XXXXX
XXXXX
10
XXXXX
XXXXX
4
XXXXX
XXXXX
5
XXXXX
XXXXX
6
XXXXX
XXXXX
14
XXXXX
XXXXX
15
XXXXX
XXXXX
16
XXXXX
XXXXX
17
XXXXX
XXXXX
11
XXXXX
XXXXX
12
XXXXX
XXXXX
13
XXXXX
XXXXX
21
XXXXX
XXXXX
22
XXXXX
XXXXX
23
XXXXX
XXXXX
24
XXXXX
XXXXX
18
XXXXX
XXXXX
19
XXXXX
XXXXX
20
XXXXX
XXXXX
28
XXXXX
XXXXX
29
XXXXX
XXXXX
30
XXXXX
XXXXX
25
XXXXX
XXXXX
26
XXXXX
XXXXX
27
XXXXX
XXXXX
1
XXXXX
XXXXX
2
XXXXX
XXXXX
3
XXXXX
XXXXX
Costing
$2.5M
per year to correct
Database backup and recovery is still a top IT challenge
Leading financial services company recent experiences
Source: Customer internal data
24

Thank you

Oracle Data Protection - 1. část

Recommended

More Related Content

What's hot (20)

Similar to Oracle Data Protection - 1. část (20)

More from MarketingArrowECS_CZ (20)

Recently uploaded (20)

Oracle Data Protection - 1. část