Oracle SuperCluster delivers a complete set of integrated security
controls, implemented as a comprehensive platform, to enable secure
multi-tenancy for service providers. Unique in the industry, the Oracle SuperCluster multi-tenant architecture
enables market leading performance, high availability, and extreme scalability
while also satisfying key customer security requirements such as secure
isolation, strong authentication and access control, end-to-end data
protection, and comprehensive monitoring and compliance auditing. The security protections designed into the
Oracle SuperCluster multi-tenant architecture span every layer of the IT stack
from the compute hardware, virtualization, and operating system to networking,
storage, database and applications.
SuperCluster Multi-tenant Architecture
From a service provider perspective, each tenant
will be isolated using a combination of system and network virtualization
techniques. To further reinforce this segregation, system, network, storage,
and database access control mechanisms will be implemented ensuring each
tenant’s applications, resources and data are protected and not impacted by
other tenants residing on the same physical platform.
Throughout the architecture, strong encryption will be leveraged to help
ensure that information is protected in transit. Finally, comprehensive logging
and auditing will be enabled to help support audit and compliance requirements.
From an individual tenant
perspective, resources are made available to ensure proper operation of single
instance and clustered application and database workloads. Individual tenants
are not able to interact or even detect that other tenants may be operating on
the same physical platform. Each tenant is logically isolated into one or more
Solaris non-global zones, supporting either application or database workloads, connected
together using a collection of virtualized networks.
These non-global zones are each
allocated specific compute, storage and network resources, based upon their unique
requirements, and tenants are not permitted to alter these settings. Further, tenants
are given sufficient administrative privileges to manage their applications and
database, no tenant is permitted to have unrestricted administrative privileges
to their respective non-global zones.
For example, the following diagram
illustrates one possible approach where a tenant is offered to support Oracle
SuperCluster with Oracle WebLogic and Oracle Database servers.
Figure 1, Oracle SuperCluster
SuperCluster Customer Advocacy – IT Service Providers:
what Oracle SuperCluster
IT Services host providers have articulated as their specific
multi-tenant environments and business benefits.
Bottom of Form