Friday Feb 21, 2014
Tuesday Feb 19, 2013
By Mohan Prabhala on Feb 19, 2013
- Oracle Secure Global Desktop (coupled with Oracle Secure Global Desktop's Secure Gateway) provides access to Solaris desktops and terminal sessions from a variety of client devices and from anywhere in the world, allowing excellent performance even over high-latency WAN links.
- Oracle Secure Global Desktop (using the Client Drive Mapping or CDM feature) provides the ability to transfer files from user's local computers to the secure storage assigned to them within the Oracle Solaris Remote Lab
- Oracle Secure Global Desktop is used to secure each independent software vendor's data and desktop access. The lab implements a separate Oracle Secure Global Desktop server per partner which is isolated on a separate VLAN, allowing for a multi-tenant setup.
- Oracle Secure Global Desktop's web services API allows for seamless integration of functionality within Oracle Solaris Remote Labs' portal, resulting in a coherent user experience for independent software vendors.
- Oracle Secure Global Desktop's Secure Gateway allows independent software vendors access to their resources using only a single point of entry into the network.The role of this gateway is to direct each user's network traffic to the correct VLAN and, thus, to the correct VMs.
Tuesday Feb 05, 2013
By Monica Kumar on Feb 05, 2013
Airbus, a world leader in the civil air transport market, employs approximately 52,000 people at sixteen sites in France, Germany, the United Kingdom, and Spain. The company relies on partnerships with major companies around the world and has a network of 1,500 suppliers in 30 countries.
Airbus uses Oracle Secure Global Desktop to provide a dispersed workforce of aircraft designers, structural engineers, and other essential, ground-based staff with secure, real-time access to test results during flight trials. Technical teams no longer need to travel to the company’s center in Toulouse, and experts have the ability to start to evaluate results immediately. Using Oracle Secure Global Desktop has helped Airbus accelerate compliance with global aviation regulations, complete tests required by potential customers more quickly, and reduce time to market for new aircraft.
"Oracle Secure Global Desktop enables us to deliver real-time flight
test data direct from the cockpit to any number of designers, engineers,
component manufacturers, and other authorized users, regardless of
location or client device." – Ghislain Banville, IT Architect, Flight
Test Data Equipment, Airbus
Thursday May 17, 2012
By Chris Kawalek on May 17, 2012
The Sun Ray Software and Oracle Virtual Desktop Infrastructure smart card software stack is one of the most versatile solutions, providing enhanced compatibility with more smart cards, and smart card middleware partner products, than ever before. By allowing applications to utilize the full addressing space and data storage capabilities of cards and middleware that use the extended APDU format, and by enhancing compatibility with PC/SC on Microsoft Windows, Oracle provides the fastest and most compatible performing smart card-based solutions for virtual desktops. In laboratory testing, smart card data transfer speeds up to 24 times faster than previous releases have been measured on Sun Ray 3 Series Clients, which means that operations such as PIN login and PKI are faster, and the user gets authenticated access to their desktop much more quickly.
With the use of a smart card, users can automatically launch their sessions without the need to enter their login credentials multiple times, saving time and increasing productivity. This enhanced smart card solution is extremely cost-effective and easy to implement, and is critical for environments where security and speed are a must - including healthcare, kiosks, and Point of Sale terminals.
|Fast auto-launch of sessions - with or without a PIN||Increases end-user productivity|
|Automatic identification of both user and card||Provides instant identification and security|
|User authentication with password, PIN and/or Biometrics||Provides additional security using multi-factor authentication|
|Manage smart cards at multiple levels - local user, sessions/domain||Gives administrators flexibility to choose a configuration that best suits their needs|
(This blog posted on behalf of Oracle's Michael Bender)
Tuesday May 08, 2012
By Jeff Reilly on May 08, 2012
Oracle desktop virtualization is showcased with the Oracle Cross Domain Security Solution and Oracle Systems at the DISA (Defense Information Systems Agency) Mission Partner Conference 2012. This annual DISA conference brings together decision-makers and subject-matter experts from the military services, combatant commands, industry, and academia to share information and ideas that are of mutual interest and are critical to helping the U.S. Department of Defense achieve mission success. The conference also features a list of stellar speakers including Oracle President Mark Hurd as the featured speaker on Wednesday May 8, 2012.
Oracle Sun Ray Clients and Oracle Solaris with Trusted Extensions are key elements of the accredited Cross Domain Security Solution used by the U.S. Federal Government. The Oracle Solution for Single Level Security adds the Oracle Virtual Desktop Infrastructure software for the secure access and provisioning of Windows 7 Virtual Desktops.
This years DISA Conference theme is “The Joint Enterprise: Delivered Through Partnership.” As described by Lt. General Ronnie Hawkins: "DISA realizes that delivering an enterprise that improves security, enhances effectiveness, achieves efficiency, enables innovation, and reduces the warfighter’s burden can be achieved by working with our mission partners".
Oracle Sun Ray Clients are featured at the Oracle Booth for the DISA 2012 Mission Assurance Conference. Solaris Trusted Extensions provide the cross domain multi-level security solution shown to the left with green and red window labeling indicating the security level.
Integrated labeling enforce secure access across security domains and applications including access to Windows desktops hosted on Oracle Virtual Desktop Infrastructure. The Oracle Cross Domain Security Solution supports the Federal Government Common Access Card and SIPR Token Cards.
Lt. General Ronnie Hawkins stops by the Oracle Booth to discuss the Oracle Cross Domain Security Solution with Oracle sales consultants at the DISA Mission Partner Conference 2012.
Wednesday Jan 26, 2011
By Honglin Su on Jan 26, 2011
We just published a technical white paper: Secure Deployment of Oracle VM Server for SPARC written by Stefan Hinker, an Oracle solution architect.
This paper helps you understand the general security concerns in virtualized environments as well as the specific additional threats that arise out of them. It discusses these threats, their relation to Oracle VM Server for SPARC and how to mitigate the risk with a set of appropriate counter measures. Based on these, some general recommendations for secure deployments - both for Oracle VM Server for SPARC and for virtualized systems in general - are given, using a generalized model of security classes as an example.
For more information about Oracle VM Server for SPARC:
- Read technical white papers
- Attend training offered by Oracle University: Oracle VM Server for SPARC Administration
Wednesday Dec 22, 2010
By Adam Hawley on Dec 22, 2010
Between all the press coverage on the unauthorized release of 251,287 diplomatic documents and on previous extensive releases of classified documents on the events in Iraq and Afghanistan, one could be forgiven for thinking massive leaks are really an issue for governments, but it is not: It is an issue for corporations as well.
In fact, corporations are apparently set to be the next big target for things like Wikileaks. Just the threat of such a release against one corporation recently caused the price of their stock to drop 3% after the leak organization claimed to have 5GB of information from inside the company, with the implication that it might be damaging or embarrassing information.
At the moment of this blog anyway, we don't know yet if that is true or how they got the information but how did the diplomatic cable leak happen?
For the diplomatic cables, according to press reports, a private in the military, with some appropriate level of security clearance (that is, he apparently had the correct level of security clearance to be accessing the information...he reportedly didn't "hack" his way through anything to get to the documents which might have raised some red flags...), is accused of accessing the material and copying it onto a writeable CD labeled "Lady Gaga" and walking out the door with it. Upload and... Done.
In the same article, the accused is quoted as saying "Information should be free. It belongs in the public domain."
Now think about all the confidential information in your company or non-profit... from credit card information, to phone records, to customer or donor lists, to corporate strategy documents, product cost information, etc, etc.... And then think about that last quote above from what was a very junior level person in the organization...still feeling comfortable with your ability to control all your information?
So what can you do to guard against these types of breaches where there is no outsider (or even insider) intrusion to detect per se, but rather someone with malicious intent is physically walking out the door with data that they are otherwise allowed to access in their daily work?
A major first step it to make it physically, logistically much harder to walk away with the information. If the user with malicious intent has no way to copy to removable or moble media (USB sticks, thumb drives, CDs, DVDs, memory cards, or even laptop disk drives) then, as a practical matter it is much more difficult to physically move the information outside the firewall. But how can you control access tightly and reliably and still keep your hundreds or even thousands of users productive in their daily job?
Oracle Desktop Virtualization products can help.
Oracle's comprehensive suite of desktop virtualization and access products allow your applications and, most importantly, the related data, to stay in the (highly secured) data center while still allowing secure access from just about anywhere your users need to be to be productive.
Users can securely access all the data they need to do their job, whether from work, from home, or on the road and in the field, but fully configurable policies set up centrally by privileged administrators allow you to control whether, for instance, they are allowed to print documents or use USB devices or other removable media. Centrally set policies can also control not only whether they can download to removable devices, but also whether they can upload information (see StuxNet for why that is important...)
In fact, by using Sun Ray Client desktop hardware, which does not contain any disk drives, or removable media drives, even theft of the desktop device itself would not make you vulnerable to data loss, unlike a laptop that can be stolen with hundreds of gigabytes of information on its disk drive. And for extreme security situations, Sun Ray Clients even come standard with the ability to use fibre optic ethernet networking to each client to prevent the possibility of unauthorized monitoring of network traffic.
But even without Sun Ray Client hardware, users can leverage Oracle's Secure Global Desktop software or the Oracle Virtual Desktop Client to securely access server-resident applications, desktop sessions, or full desktop virtual machines without persisting any application data on the desktop or laptop being used to access the information. And, again, even in this context, the Oracle products allow you to control what gets uploaded, downloaded, or printed for example.
Another benefit of Oracle's Desktop Virtualization and access products is the ability to rapidly and easily shut off user access centrally through administrative polices if, for example, an employee changes roles or leaves the company and should no longer have access to the information.
Oracle's Desktop Virtualization suite of products can help reduce operating expense and increase user productivity, and those are good reasons alone to consider their use. But the dynamics of today's world dictate that security is one of the top reasons for implementing a virtual desktop architecture in enterprises.
Get the latest scoop on products, strategy, events, news, and more, from Oracle's virtualization experts
- Friday Spotlight: Writing a Broker for Oracle Secure Global Desktop
- Friday Spotlight: Oracle VM update 3.2.8 is now available through My Oracle Support
- Dynamic Launch in Oracle Secure Global Desktop
- Run Virtual Machines with Oracle VM
- PVH - Best Characteristics of All Virtualization Modes
- PARTNER WEBINAR (Apr 17): Deploy BeyondTrust's Powerbroker in Minutes with Oracle VM Template
- Oracle VM VirtualBox 4.3.10 New Features
- Friday Spotlight: New Features in Oracle VM Server for SPARC
- Oracle Secure Global Desktop and Oracle VDI
- Webcast: Simply Your Cloud Deployment with Oracle Virtual Compute Appliance