• Home
  • desktop
  • ASCII.jp Oracle, ID management and CASB cloud security service provision
22 Feb, 2023

ASCII.jp Oracle, ID management and CASB cloud security service provision

Oracle Japan announced on January 30 that it has launched the cloud -type ID management service "Oracle Identity Cloud Service".The briefing session on the same day introduced an oracle initiatives on cloud environments, including the Oracle Casb Cloud Service, which was a lineup of CASB (Casbie, Cloud Access Security Broker) acquired last September.

Features of "Oracle Identity Cloud Service" which was offered this time

Japan Oracle Executive Officer Cloud Technology Business Management Fusion Middleware Director Makoto Honda

Mr. Tadahisa Furukawa, General Manager of Deputy Business Division, Deputy Business Headquarters, the company's cloud technology business.

ID management service that coordinates with on -premises / third -party clouds

Oracle Identity Cloud Serivece (IDCS) is a cloud -type management service that supports major cloud services for business businesses such as SaaS/PaaS/IaaS provided by Oracle, and Google, Microsoft, Sales Force.com, Box, Work Day.。

In cooperation with the Microsoft Active Directory server and the Oracle Identity Management (OIM) installed in the on -premises, it is also possible to make a hybrid configuration in which ID information such as users / groups synchronize with on -premises / cloud.Each environment can be connected by a single sign -on (SSO).

Through IDCS, Oracle Cloud, Third Party Cloud, and even on -premises can be managed and SSO

In IDCS, industry standard authentication standards (SAML 2).0, Scim, OAuth 2.0, OpenID Connect), and Oracle will be able to work not only in the third -party cloud registered in the catalog, but also to customer custom apps through the API (will also provide compatible tools in the future).

In addition to ID / password, we realize multi -factor authentication that combines mobile devices (one -time password), geographical information, network information, and elements such as date and time.There is also a self -service type user password reset function.

Catalog registered major cloud applications can be easily linked and can be linked with custom applications via API.

ASCII.jp オラクル、ID管理とCASBのクラウドセキュリティサービス提供

In addition, the current functions provided by the current IDCS are only basic ones, and authentication with on -premises Oracle products, such as OIM, cannot be authenticated.Oracle plans to strengthen its functions in the future.

The IDCS license price (all excluding tax) is divided into "IDCS BASIC", which only supports Oracle Cloud authentication, and "IDCS Standard", which also supports third -party clouds.For internal employees, IDCS Basic costs 120 yen per month per user, and IDCS Standard costs 480 yen.Also, the IDCS Standard license for non -employees that can be used with the BtoB/Btoc service is 2..It is 4 yen.

Mitsuru Honda, an executive officer of Oracle Japan, is a price competitive service, and as a target, we think about the ID management of cloud services for customers who have already introduced OIM on -premises and "cloudfast".He said that there are two new companies: ID management for companies that use both Oracle Cloud and third -party clouds.

Oracle version CASB is also available

Another Oracle Casb Cloud Service is a service that integrates Palerra's "Loric", which was announced by Oracle last September, into the Oracle Cloud lineup.

Features of "Oracle Casb Cloud Service".Providing four major functions

CASB is a solution to prevent policy violations, compliance violations, and security threats to visualize the usage status of various cloud services and digital content in the cloud.

Oracle Casb is currently compatible with major third -party clouds such as Google, Microsoft, AWS, Sales Force, BOX (Oracle Cloud SaaS/PaaS/IaaS in the future).From these cloud services, logs are collected and analyzed via APIs, analyzing usage status, etc., and automating threats to prevent and respond with policy bases while using machine learning.

Realizes policy -based automatic monitoring / detection / control through Oracle Casb

Mr. Tadahisa Furukawa of Oracle Japan is a professional architecture of other companies, and there is a problem of latency and performance to inspect the traffic directly to the cloud, but Oracle Casb is a method of acquiring an event log via API.He explained that no such problem occurred.

On the other hand, it is difficult to prevent traffic itself, so it is difficult to prevent the diskavari of "Shadow IT" (unauthorized cloud service) and the use of policy violation (personal information, etc.).。In this regard, the API provided by cooperation cloud services will be enhanced in the future.

Oracle's CASB (left) explained that it does not have an effect on latency or performance, rather than directly testing cloud tropic like other companies Casb (right).

The usage price of Oracle Casb is 600 yen per month for SaaS compatible version.The IAAS compatible board is 108,000 yen per month per account.

Mr. Honda explained that corporate customers are less concerned about cloud services, and that rather, "public cloud is more secure than on -premises".Oracle plans to provide six cloud -based security services, including the already provided DB security, this ID management, Casb, and security monitoring / analytics, compliance monitoring, API management to be provided in the future.He said.

Six security services provided by Oracle Cloud (including those to be provided in the future)

Prev Next