Oracle University Podcast

In this episode, Lois Houston and Nikita Abraham are joined by Cloud Engineer Nick Commisso to talk about managing Oracle Database with REST APIs.   They also look at Autonomous Database built-in tools, which are pre-assembled, pre-configured, and pre-deployed, delivering a consistent user experience.   Oracle MyLearn: https://mylearn.oracle.com/   Oracle University Learning Community: https://education.oracle.com/ou-community   LinkedIn: https://www.linkedin.com/showcase/oracle-university/   Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Deepak Modi, and the OU Studio Team for helping us create this episode.   --------------------------------------------------------   Episode Transcript:   00;00;00;00 - 00;00;39;06 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we’ll bring you foundational training on the most popular Oracle technologies. Let's get started! Hello and welcome to the Oracle University Podcast. I'm Lois Houston, Director of Product Innovation and Go to Market Programs with Oracle University. And with me is Nikita Abraham, Principal Technical Editor.   00;00;39;12 - 00;01;04;12 Hello again! Last week, we discussed Oracle Cloud Infrastructure’s Maximum Availability Architecture. And in today's episode, we'll talk about managing Oracle Database with REST APIs and also look at Autonomous Database built-in tools with our Cloud Engineer Nick Commisso. Hi Nick, thanks for being back on the podcast. What is Oracle REST Data Services? What do you use it for?   00;01;04;14 - 00;01;31;07 Oracle is not just a relational database anymore. And the REST APIs can be deployed with Oracle REST Data Services or ORDS to handle all of these data format models. And you can use ORDS for application development and accessing the data and can be used as a powerful tool for automating management, lifecycle, provisioning, and data-dictionary-type use.   00;01;31;09 - 00;02;02;02 Oracle Cloud offers full REST APIs for DBAs and developers who would prefer to interact with Oracle Autonomous Database Cloud services programmatically over REST rather than log in to the cloud console and click through screens. This provides a mechanism for developing customized deployment and management scripts that can be saved and reused for deployments, setting gold standards, and storing entire application infrastructure stacks as version-controlled code.   00;02;02;08 - 00;02;35;15 I think before we move on, it's important to clarify. For anyone who doesn't already know, what is REST? How do Oracle Cloud Infrastructure APIs use REST and HTTPS? REST is combined with HTTPS, but is not a protocol. REST is an acronym for Representational Stateless Transfer. The Oracle Cloud Infrastructure APIs are typical REST APIs that use HTTPS requests and responses and support HTTPS and SSL protocol TLS 1.2, the most secure industry standards.   00;02;35;15 - 00;03;18;17 Calls to the Oracle Cloud Infrastructure using REST APIs can be written in popular scripting languages such as Node.js, Python, Ruby, Perl, Java, C#, Bash, or Curl. The way you interact with your data are the API calls via HTTP - GET to access your data and stored procedures. PUT to update your data. POST to insert your data and execute PL/SQL. And DELETE to remove your data. When making an HTTP request with Oracle REST Data Services, how does the process flow from the request to accessing data in the database?   00;03;18;17 - 00;03;46;21 A person, process, or computer gets ready to make an HTTP request. You need to tell the request where the thing or data is, and the request will get into the web tier where ORDS is running. ORDS then translates the REST request to a SQL statement and accesses the table to get the information requested.   00;03;46;24 - 00;04;13;11 The result normally comes back as a JSON, but can also return an HTML, binary, and CSV. With all of these requests, a collection of connections to the database or connection pool is used and all of the data might not return, depending on the device asking. The results set up links to get more data, but each each time, this links to get another request through the connection pool.   00;04;13;13 - 00;04;41;06 The default size of the connection pool are 10 and it depends how fast is the database code that's tied to the APIs. But 10 probably isn't enough. Because of the results and connection pooling, it shouldn't be long-running code when using APIs. What is the architecture of Oracle REST Data Services? Can you tell us about the integration with components like Java servlets, Tomcat, WebLogic, and Apache?   00;04;41;08 - 00;05;13;24 Also, how does ORDS enable authentication and access to data in the Oracle database through REST calls? ORDS runs in a Java servlet. Or it can be run within Tomcat or WebLogic for E-Business or Fusion. The request comes into the web server and ORDS handles the request. ORDS is included in your Oracle database license. This is a simplified view of your architecture, but there's normally a load balancer in front of the Apache server to handle the requests coming in.   00;05;13;27 - 00;05;50;09 The REST service is already hooked up into the database. Authentication with the web server and the hooks are there to be accessing the data. The code and the data is already in the database in the APEX apps. And the REST calls allow for you to access the data. It harnesses the Oracle database. In order to manage your database with automation, along with minimal human interaction, you need to use ORDS and the REST APIs that are enabled for database management to provision, control, and monitor the Oracle database.   00;05;50;11 - 00;06;20;22 You need an Oracle database for ORDS to work. ORDS can run anywhere that Oracle can run and is easily plugged into the Oracle Database Management pipeline. What are some key features and functionalities offered by the Oracle Database REST APIs? There are over 600 REST endpoints provided to manage and monitor your Oracle database. These are supported starting from 11gR2 up to the current version of the database.   00;06;20;25 - 00;06;51;14 The REST APIs have general information, data dictionary, monitoring, performance, and lifecycle management. Can you give us some examples of specific details that are accessible through the REST APIs? For performance, there's Top SQL, ASH, and AWR reports. For monitoring, you can look at sessions, locks, waits, and alert logs. Lifecycle will allow you to manage multitenant for provisioning PDBs.   00;06;51;16 - 00;07;16;08 And let's not forget about the data dictionary tables where you can report on objects and database operations. And how do you get started with ORDS? To get started using ORDS, you need to install ORDS. You run the installer and there are configuration files that are also created that can be adjusted later. You need the information about connection to the database where you want ORDS installed.   00;07;16;10 - 00;07;47;08 What goes into the database is the schema, ORDS_METADATA, and a user, ORDS_PUBLIC_USER. Are you attending Oracle CloudWorld 2023? Learn from experts, network with peers, and find out about the latest innovations when Oracle CloudWorld returns to Las Vegas from September 18 through 21. CloudWorld is the best place to learn about Oracle solutions from the people who build and use them.   00;07;47;08 - 00;08;15;02 In addition to your attendance at CloudWorld, your ticket gives you access to Oracle MyLearn and all of the cloud learning subscription content as well as three free certification exam credits. This is valid from the week you register through 60 days after the conference. So, what are you waiting for? Register today. Learn more about Oracle CloudWorld at www.oracle.com/cloudworld.   00;08;15;04 - 00;08;48;14 Welcome back. Let's move on to Oracle's data toolset. Nick, what are the key tools offered by Oracle for data analysis and integration? Oracle Data Integrator or ODI is an enterprise class data integration tool with extract, load, and transform, or ELT architecture. Enterprise Data Quality or EDQ is a sophisticated, powerful tool for profiling, cleaning, and preparing your data.   00;08;48;17 - 00;09;24;14 Analytic views built into Oracle database provides a common framework for defining universally accessible semantic models. Oracle Analytics Cloud, or OAC, is the perfect complement, providing beautiful and insightful analysis of this data. So, how do these tools come together?  For our traditional market, this is a comprehensive and compelling suite of tools. Enterprise class tools for an enterprise class market. With autonomous database, we deliver an integrated platform.   00;09;24;17 - 00;09;47;24 It's not a single tool with the customer left to buy the other tools that we need, nor is it a solution delivered in kit form with the customer left to cobble it all together. It's pre-assembled, preconfigured, and pre-deployed. There is a consistent user experience with built-in best practices. It's like having an expert in a box there to guide you.   00;09;47;26 - 00;10;12;15 Components are defined in the common database layer so that they can be shared by all users in all tools. And the metadata? And all of this metadata is brought together in the catalog. So, it's not just the tools that are integrated, it's the data too, a business model spanning data sources that can be federated when appropriate and defined in a common data catalog, which eliminates silos.   00;10;12;17 - 00;10;49;24 The result is renewed confidence in data lineage and impact analysis. In other words, we have collaboration by design. This built-in collaboration between specialists eliminates silos. For example, hierarchies recognized automatically in the data preparation phase are defined in the database itself, are immediately accessible to the data analysts for aggregation purposes. Additional semantic modeling by the analysts, perhaps defining sophisticated calculations, such as percentage change since last year, and again, defined in the database itself, can be accessed by the data scientist.   00;10;49;27 - 00;11;15;19 This provides a great headstart in developing predictive models that, in turn, can be used by the CRM developer who might want to augment a customer view with the most suitable campaign to discuss during the next meeting. So, autonomous database comes with a sophisticated suite of tools pre-installed.   00;11;15;20 - 00;11;40;10 So, it's basically an open platform with open standards. If you want to speak SQL, speak SQL, so do we. We speak Python too, if that's your preference. Whether your data is in a CSV file or a JSON format, it's going to be comfortably at home in autonomous database. Using the language of your choice, analyze your data using whatever tool you're most comfortable with.   00;11;40;17 - 00;12;00;18 The whole idea is that there should be nothing new to learn. Thanks, Nick, for joining us today. To learn more about ADB built-in tools, head over to mylearn.oracle.com and get started on our free Oracle Cloud Data Management Foundations Workshop. Next week will be our last episode of the season where we’ll look at Oracle Data Lakehouse.   00;12;00;21 - 00;14;47;18 Until then, this is Nikita Abraham and Lois Houston signing off. That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

15 Aug 202312min

Join Lois Houston and Nikita Abraham, along with Alex Bouchereau, as they talk about Oracle Maximum Availability Architecture, which provides architecture, configuration, and lifecycle best practices for Oracle Databases.   Oracle MyLearn: https://mylearn.oracle.com/ Oracle University Learning Community: https://education.oracle.com/ou-community LinkedIn: https://www.linkedin.com/showcase/oracle-university/ Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Ranbir Singh, and the OU Studio Team for helping us create this episode.   --------------------------------------------------------   Episode Transcript:   00;00;00;00 - 00;00;39;11 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we'll bring you foundational training on the most popular Oracle technologies. Let's get started. Hello and welcome to the Oracle University Podcast. I'm Nikita Abraham, Principal Technical Editor with Oracle University, and I'm joined by Lois Houston, Director of Product Innovation and Go to Market Programs.   00;00;39;18 - 00;01;12;09 Hi, everyone. Last week, we discussed Oracle's Maximum Security Architecture, and today, we're moving on to Oracle Cloud Infrastructure's Maximum Availability Architecture. To take us through this, we're once again joined by Oracle Database Specialist Alex Bouchereau. Welcome, Alex. We're so happy you're becoming a regular on our podcast. So, to start, what is OCI Maximum Availability Architecture? Now, before we actually jump into the specifics, it's important to understand the problem we're trying to address.   00;01;12;11 - 00;01;38;01 And that is database downtime and data protection. We don't want any data loss and the impact of both of these types of occurrences can be significant. Now, $350K on average of costs of downtime per hour, 87 hours average amount of downtime per year is pretty significant. So, it's a very, very common occurrence. It's $10 million for a single outage, depending on how critical the application is.   00;01;38;03 - 00;02;02;28 And 91% of companies have experienced unplanned data center outages, which means this occurs fairly often. So, what can we do about this? How do we address the problem of data loss? It's important to understand a different terminology first. So, we'll start with high availability. High availability provides redundant components to go ahead and ensure your service is uninterrupted in case of a type of hardware failure.   00;02;03;01 - 00;02;24;24 So, if one server goes down, the other servers will be up. Ideally, you'll have a cluster to go ahead and provide that level of redundancy. And then we talk about scalability. Depending upon the workload, you want to ensure that you still have your performance. So, as your application becomes more popular and more end users go ahead and join it, the workload increases.   00;02;24;26 - 00;02;42;28 So, you want to ensure that the performance is not impacted at all. So, if we want to go ahead and minimize the time of our planned maintenance, which happens more often and a lot more often than unplanned outages, we need to do so in a rolling fashion. And that's where rolling upgrades, rolling patches, and all these types of features come into play.   00;02;42;29 - 00;03;10;20 Okay, so just to recap, the key terms you spoke about were high availability, which is if one server goes down, others will be up, scalability, which is even if the workload increases, performance isn’t impacted, and rolling updates, which is managing planned updates seamlessly with no downtime. Great. What's next? Disaster recovery. So, we move from high availability to disaster recovery, protecting us from a complete site outage.   00;03;10;27 - 00;03;35;02 So, if the site goes down entirely, we want to have a redundant site to be able to failover to. That's where disaster recovery comes into play. And then how do we measure downtime and data loss? So, we do so with Recovery Point Objectives, or RPOs, measuring data loss and Recovery Time Objectives, or RTOs, measuring our downtime.   00;03;35;05 - 00;04;00;22 Alex, when you say measure downtime, how do we actually do that? Well, we use a technique called chaos engineering. Essentially, it's an art form at the end of the day because it's constantly evolving and changing over time. We're proactively breaking things in the system and we're testing how our failover, how our resiliency, and how our switchovers, and how everything goes ahead and works under the covers with all our different features.   00;04;00;23 - 00;04;21;28 A lot of components can suffer an outage, right? We have networks and servers, storage, and all these different components can fail. But also human error. Someone can delete a table. You could delete a bunch of rows. So, they can make a mistake on the system as well. That occurs very often. Data corruption and then, of course, power failures.   00;04;22;00 - 00;04;45;03 Godzilla could attack and take out the entire data center. Godzilla! Ha! And you want to be able to go ahead and have a disaster recovery in place. And then there's all kinds of maintenance activities that happen with application updates. You might want to reorganize the data without changing the application and the small, little optimizations. And these can all happen in isolation and or in combination with each other.   00;04;45;05 - 00;05;19;03 And so chaos engineers take all this into consideration and build out the use cases to go ahead and test the system. Do we have some best practices in place for this, then? Oracle Maximum Availability Architecture, MAA, is Oracle's best practice blueprint based on proven Oracle high availability technologies, end-to-end validation, expert recommendations, and customer experiences. The key goal of MAA is to achieve optimal high availability, data protection, and disaster recovery for Oracle customers at the lowest cost and complexity.   00;05;19;05 - 00;05;54;07 MAA consists of reference architectures for various buckets of HA service-level agreements, configuration practices, and HA lifecycle operational best practices, and are applicable for non-engineered systems, engineered systems, non-cloud, and cloud deployments. Availability of data and applications is an important element of every IT strategy. At Oracle, we've used our decades of enterprise experience to develop an all-encompassing framework that we can all call Oracle MAA, for Maximum Availability Architecture.   00;05;54;07 - 00;06;20;21 And how was Oracle's Maximum Availability Architecture developed? Oracle MAA starts with customer insights and expert recommendations. These have been collected from our huge pool of customers and community of database architects, software engineers, and database strategists. Over the years, this has helped the Oracle MAA development team gain a deep and complete understanding of various kinds of events that can affect availability.   00;06;20;24 - 00;06;48;11 Through this, they have developed an array of availability reference architectures. These reference architectures acknowledge not all data or applications require the same protection and that there are real tradeoffs in terms of cost and effort that should be considered. Whatever your availability goals may be for a database or related applications, Oracle has the product functionality and guidance to ensure you can make the right decision with full knowledge of the tradeoffs in terms of downtime, data loss, and costs.   00;06;48;11 - 00;07;04;01 These reference architectures use a wide array of our HA features, configurations, and operational practices.   00;07;04;03 - 00;07;29;04 Want to get the inside scoop on Oracle University? Head on over to the all-new Oracle University Learning Community. Attend exclusive events. Read up on the latest news. Get firsthand access to new products and stay up-to-date with upcoming certification opportunities. If you're already an Oracle MyLearn user, go to mylearn.oracle.com to join the community. You will need to log in first. If you've not yet accessed Oracle MyLearn, visit mylearn.oracle.com and create an account to get started.   00;07;29;04 - 00;07;57;19 Join the community today. Welcome back. Alex, you were telling us about how Oracle MAA or Maximum Availability Architecture has reference architectures that use a series of high availability features and configurations. But, how do these help our customers? They help our end customers achieve primarily four goals.   00;07;57;22 - 00;08;29;29 Number one, data protection, reducing data loss through flashback and absolute data protection through zero data loss recovery appliance. Number two, active replication, which allows customers to connect their applications to replicated sites in an active-active HA solution through Active Data Guard and GoldenGate. Number three, scale out, which allows customers the ability to scale compute nodes linearly through RAC, ASM, and Sharding.   00;08;30;01 - 00;08;58;19 Four, continuous availability. This allows transparent failovers of services across sites distributed locally or remote, through AC and GDS. These features and solutions allow customers to mitigate not only planned events, such as software upgrades, data schema changes, and patching, but also unplanned events, such as hardware failures and software crashes due to bugs. Finally, customers have various deployment choices on which we can deploy these HA solutions.   00;08;58;22 - 00;09;25;02 The insights, recommendations, reference architectures, features, configurations, best practices, and deployment choices combine to form a holistic blueprint, which allows customers to successfully achieve their high availability goals. What are the different technologies that come into play here? Well, we'll start with RAC. So, RAC is a clustering technology spread through different nodes across the different servers, so you don't have a single point of failure.   00;09;25;05 - 00;09;46;13 From a scalability standpoint and performance standpoint, you get a lot of benefit associated with that. You constantly add a new node whenever you want to without experiencing any downtime. So, you have that flexibility at this point. And if any type of outage occurs, all the committed transactions are going to be protected and we'll go ahead and we'll move that session over to a new service.   00;09;46;15 - 00;10;07;27 So, from that point, we want to go ahead and also protect our in-flight transactions. So, when it comes to in-flight transactions, how are we going to protect those in addition to the RAC nodes? Well, we can go ahead and do so with another piece of technology that's built into RAC, and that's the Transparent Application Continuity feature. So, this feature is going to expand the capabilities of RAC.   00;10;08;03 - 00;10;28;18 It's a feature of RAC to go ahead and protect our in-flight transactions so our application doesn't experience those transactions failing and coming back up to the layer, or even up to the end users. We want to capture those. We want to replay them. So that's what application continuity does. It allows us to go in and do that.   00;10;28;21 - 00;10;51;03 It supports a whole bunch of different technologies, from Java, .NET, PHP. You don't have to make any changes to the application. All you have to do is use the correct driver and have the connection string appropriately configured and everything else is happening in the database. What about for disaster recovery? Active Data Guard is the Oracle solution for disaster recovery.   00;10;51;05 - 00;11;29;08 It eliminates a single point of failure by providing one or more synchronized physical replicas of the production database. It uses Oracle Aware Replication to efficiently use network bandwidth and provide unique levels of data protection. It provides data availability with fast, manual, or automatic failover to standby should a primary fail and fast switch over to a standby for the purpose of minimizing planned downtime as well. An Active Data Guard standby is open, read only, while it is being synchronized, providing advanced features for data protection, availability, and protection offload.   00;11;29;08 - 00;11;50;23 We have different database services, right? We have our Oracle Database Cloud servers, we have Exadata Cloud servers, and we have Autonomous Database. Do they all have varying technologies built into them? All of them are Database Aware architecture at the end of the day. And the Oracle Database Cloud Service, you have the choice of single instance, or you can go ahead and choose between RAC as well.   00;11;50;25 - 00;12;23;25 You can use quick migration via Zero Downtime Migration, or ZDM for short. We have automated backups built in, and you can set up cross-regional or cross availability to do any DR with Active Data Guard through our control play. And we build on that with Exadata Cloud Service by going ahead and changing the foundation to Exadata, with all the rich benefits of performance, scalability, and optimizations for the Oracle Database, and all the different HA and DR technologies that run within it, to the cloud.   00;12;23;27 - 00;12;50;22 Very easy to go ahead and move from Exadata on-premise to Exadata Cloud Service. And you have choices. You can do the public cloud, or you can do Cloud@Customer or ExaCC, as we call it, to go ahead and run Exadata within your own data center--Exadata Cloud Service and your own data center. And building on top of that, we have Autonomous, which also builds on top of that Exadata infrastructure.   00;12;50;25 - 00;13;19;12 And we have two flavors of that. We have shared and we have dedicated, depending upon your requirements. And is all of this managed by Oracle? Now, at this point, everything's managed by Oracle and things like Data Guard can be configured. We call it Autonomous Data Guard in the Autonomous Database. With a simple two clicks, you can set up cross-regional or cross availability domain VR. And then everything is built, of course, from a high-available multitenant RAC infrastructure.   00;13;19;15 - 00;13;48;02 So, it's using all other technologies and optimizations that we've been talking about. Thanks, Alex, for listing out the different offerings we have. I think we can wind up for today. Any final thoughts? So high availability, disaster recovery, absolute requirements. Everybody should have it. Everybody should think of it ahead of time. We have different blueprints, different tiers of our MAA architecture that map different RTO and RPO requirements depending upon your needs.   00;13;48;04 - 00;14;12;01 And those may change over time. And finally, the business continuity we can provide with MAA is for both planned maintenance and unplanned outage events. So, it's for both. And that's a critical part to this as well. Thank you, Alex, for spending this time with us. That's it for this episode. Next week, we'll talk about managing Oracle Database with REST APIs, and ADB built-in tools.   00;14;12;04 - 00;16;57;28 Until then, this is Nikita Abraham and Lois Houston signing off. That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

8 Aug 202314min

Because of how valuable your data is, protecting it against theft and unauthorized use is perhaps your biggest challenge. Databases need more security than the bare minimum.   In this episode, Lois Houston and Nikita Abraham, along with Greg Genovese, talk about how Oracle’s data-driven security features work together to create a maximum security architecture.   Oracle MyLearn: https://mylearn.oracle.com/ Oracle University Learning Community: https://education.oracle.com/ou-community LinkedIn: https://www.linkedin.com/showcase/oracle-university/ Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Ranbir Singh, and the OU Studio Team for helping us create this episode.   ---------------------------------------------------------   Episode Transcript:   00;00;00;00 - 00;00;38;18 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we'll bring you foundational training on the most popular Oracle technologies. Let's get started. Hello and welcome to the Oracle University Podcast. I'm Lois Houston, Director of Product Innovation and Go to Market Programs with Oracle University, and with me is Nikita Abraham, Principal Technical Editor.   00;00;38;20 - 00;01;01;20 Hello again! In today's episode, we're going to talk with Oracle Database Specialist Greg Genovese about Oracle's Maximum Security Architecture. Hi, Greg. Thanks for joining us today. We have so much sensitive information in our databases so I get why a data thief would try to attack and steal data. But how do they actually do it? Databases don't just operate in a vacuum.   00;01;01;23 - 00;01;26;01 A database is accessed often through a firewall by users and applications. Speaking of those firewalls, if an attacker has managed to penetrate into the internal network, they may choose to go after data traveling over that network. This type of attack is much less likely to be detected than attempts to access the database directly. Another popular attack is against the underlying data files, database backups, or database exports.   00;01;26;04 - 00;01;49;19 Here again, if the attacker is successful, they may be able to steal the entire database without even having to try to log in. Oh my goodness! That sounds terrible. If none of those options work, perhaps the database has an unpatched vulnerability. In many cases, there are automated attack toolkits that help exploit these vulnerabilities.   00;01;49;21 - 00;02;18;29 And let's not forget those non-production copies of the database. What's a non-production copy of a database? In many systems, the test and development instances are effectively just clones of production and are hardly ever monitored as closely as production databases. In most cases, there are copies of database for test, development, stage, and user acceptance testing or UAT. Databases persist data into a storage medium and run on servers with operating systems and peripherals.   00;02;19;02 - 00;02;49;16 All of these are managed by administrators. And administrators are a hacker's favorite point of attack. If they can compromise an admin account, they are in with elevated privileges and in most cases zero controls over what they can do. If the attackers can't compromise an admin account, they can often compromise an end user account. Lower privileges, but often still with access to the data or able to be used as a stepping stone to get that access.   00;02;49;19 - 00;03;20;20 Also, applications make an attractive target too. They are frequently more exposed than a database or database server and often even available from outside of the corporate firewall. That's a lot, Greg. There are just so many points of attack. So then how do I keep my database safe? Securing an Oracle Database is much like securing any other system. You are protecting your data, which could be intellectual property, financial data, personal data about your customers or your staff, or most likely a combination of all three of these things.   00;03;20;22 - 00;03;44;06 Because data is valuable, you need to guard against its theft and misuse. This data is used for business purposes and that means users and applications connect to the database and you need to safeguard that data with security controls that restrict access to the data according to your corporate policy. To do this, you'll need to do three things: assess, detect, and prevent.   00;03;44;06 - 00;04;17;01 Assess, detect, prevent. Okay. But how do you assess and what are you actually assessing? Assess the system to determine its current state and develop a remediation plan. Is the system configured properly? Are patches applied regularly? How are user privileges managed? And are you enforcing these privileges? What types and how much sensitive data is the system holding? Your existing investment in the Oracle Database gives you the features and utilities you need to assess your database and identify areas for improvement and risk reduction.   00;04;17;01 - 00;04;53;21 And how do you detect and prevent? Detect attempts to access data outside of policy and identify anomalies in data access. Almost all database activity is repetitive, so anomalies are frequently a leading-edge indicator of attempted data theft. Prevent access to the data that doesn't go through the database control mechanisms, sniffing traffic over the network, reading the underlying data storage layer, or misuse of database exports and backups. Block inappropriate access to data through control mechanisms that consider the context of the access, not just the identity of the account accessing the data.   00;04;53;21 - 00;05;10;23 Oracle provides industry-leading capabilities for each of these security control objectives. Our team can help you identify the right technical enforcement for virtually any control objective.   00;05;10;25 - 00;05;40;14 Have you been wanting to earn an Oracle certification? Well, there's never been a better time than the present. Now through August 31st, you can choose from over 20 different Oracle certifications and take up to four exams for free, including foundation, associate, and professional level Oracle Cloud Infrastructure certifications. You can also learn and get certified on Oracle Cloud Applications Business Processes for Human Capital Management, Financials, Customer Experience, Supply Chain, and Procurement.   00;05;40;17 - 00;06;07;09 And did I mention this was all free? Oracle Cloud training and certifications empower you to explore limitless possibilities in the cloud landscape. Gain the knowledge and skills needed to design, deploy, secure, and operate modern cloud infrastructure and applications with confidence. You can go to education.oracle.com for more details. What are you waiting for? Get certified today.   00;06;07;12 - 00;06;34;19 Welcome back! Greg, I'm sure every database has a basic level of security, right? There are some things we expect to always be done. What we call the baseline security posture. Establishing the baseline security posture involves several types of different controls. We'll assess the system state, prevent unauthorized activity, and detect activity that is relevant to our security controls. Our first control is assessing the database configuration.   00;06;34;22 - 00;06;59;08 We want to ensure that we haven't made configuration decisions that introduce unnecessary risk into the environment. We'll also check to make sure that the database is current on all security patches. And how do we check this? For this, we have two tools available to us: Database Security Assessment tool or DBSAT and Data Safe. DBSAT is a free utility available for download via My Oracle Support.   00;06;59;08 - 00;07;23;28 Data Safe is a cloud service that is included at no additional cost with Oracle Cloud Database Services. Data Safe is also available for on-prem databases, but there is an additional cost for those. Users and applications connect to the database. We want to ensure that if they are connecting with username and password, we're practicing good password discipline. We also want to consider the use of strong authentication.   00;07;24;00 - 00;07;50;10 Your Oracle database supports Kerberos, TKI certificate, and multi-factor authentication. We'll want to make sure that those users are really able to connect to the database, identifying dormant accounts and checking to be sure we haven't granted privileges that don't make sense in our environment. Here again, DBSAT and Data Safe help by pointing out the use of such things like select any table privileges or grants of the DBA roles.   00;07;50;12 - 00;08;15;06 We should also check that database accounts are actually using the privileges we grant. Is there any way to monitor the privileges we grant? Privilege analysis monitors privilege usage, and can report on privileges that an account has which are not being used. We can then remove those unnecessary privileges, reducing the attack surface presented by those users. Note that privilege analysis is only available for Oracle Enterprise Edition Database.   00;08;15;09 - 00;08;47;03 It is not present in Oracle Standard Edition. Users are inserting and updating data and also retrieving data. That data is traveling over the network, and in most cases, we want you to encrypt the data to reduce the chances that an attacker can simply sniff the network to steal data. And are there different types of encryption? The Oracle database supports two different types of network encryption, native network encryption, which is certificate lists and usually requiring zero change to the applications to implement. And industry standard certificate-based TLS.   00;08;47;05 - 00;09;12;12 Depending on how many users connect to our database and how many databases we have, we may want to implement centralized authentication. Your Oracle database supports two types of centralized user management. One feature, Enterprise User Security, is available on all currently-supported database versions and allows the Oracle database to consult an Oracle LDAP directory for users and role membership.   00;09;12;14 - 00;09;46;13 The other feature, centrally managed users, was new in Oracle 18c and allows the Oracle database to connect to Microsoft Active Directory for users and role membership. Is there a way for us to know what users are doing? For this, we use database auditing. The Oracle database offers a comprehensive auditing capability, and you will usually want to audit database connections, especially failed logins, as well as data control language, including creation of users and privilege grants, and data definition language like creation of stored procedures, database links, and more.   00;09;46;16 - 00;10;16;06 All of these are fairly rare in most databases, so this level of auditing presents minimal performance impact. Finally, we want to make sure that we know what sensitive data resides in the database. Is the baseline security posture appropriate for the level of risk presented by the data? Or should we do more to protect our data? Here we return to DBSAT or Data Safe, which allow us to scan the database for sensitive data reporting on what types of data are found and how much of it there is.   00;10;16;06 - 00;10;41;24 All of the controls we've talked about so far are baseline. These are things we think any database should do and everything we've discussed so far can be done without additional costs, products, or options. But what if I want more than normal baseline security? Maybe my database contains personal information, financial information, intellectual property, or something else that requires more than just basic security.   00;10;41;25 - 00;11;08;13 Since that data is eventually being persisted on disk, in backups, and in exports, we'll want to protect it from attack there. Here is where transparent data encryption comes into play. If we encrypt data, that means there is an encryption key that we need to protect and distribute securely. For this, we can use Oracle Key Vault. Remember, those administrators with privileges and access to special data? We’ll want to protect against them as well.   00;11;08;15 - 00;11;40;17 And for this, we'll use Database Vault. Could you tell us more about Database Vault? Database Vault lets us separate the duties of database administration from access to the data within the database. Database Vault also protects against a compromised application server, locking down application accounts so they can only access data from within the normal context of the application. When data is accessed from outside of the application, we may want to provide additional protection for high value data columns like credit card numbers or taxpayer IDs.   00;11;40;19 - 00;12;07;01 For this, we can use data redaction to hide sensitive data on the fly as it leaves the database. And for those non-production clones, the database we talked about, we’ll simply remove sensitive data from them, replacing it with realistic looking "safe data" that does not present a security risk, but still allows application development and testing to continue. We can either use Data Safe or Enterprise Manager’s data masking and subsetting pack.   00;12;07;03 - 00;12;30;02 We seem to have done a lot to protect the database, but is there a way to detect attempts to break in and steal data? For that, we’ll configure auditing within the database and feed audit events to a centralized audit vault for analysis, reporting, and even alert generation. We'll also use database firewall to examine incoming connections and SQL statements for anomalies and violation of policy.   00;12;30;04 - 00;13;00;15 And if we choose to, we can go one step further and actually block out policy activity with the firewall. And of course, events from the database firewall flow into the audit vault server for analysis, reporting and again, alert generation. We've talked about assessing security, detecting inappropriate activity, and preventing unauthorized access to data. But there is a fourth type of database security control that is unique to databases called database-driven security.   00;13;00;17 - 00;13;27;15 These controls are used to provide fine-grained access control at the data row or column levels. Oracle database provides a variety of data-driven security features, including Real Application Security and Label Security. All these controls, working together, create the maximum security architecture or MSA. Not every database requires the full MSA, but many databases require something much more than just standard baseline security protocols.   00;13;27;17 - 00;13;52;13 Thanks, Greg, for joining us today. To learn more about Oracle's Maximum Security Architecture, visit mylearn.oracle.com and head over to the Oracle Cloud Data Management Foundations Workshop. That brings us to the end of this episode. Join us next week for a discussion on Oracle Cloud Infrastructure's Maximum Availability Architecture. Until then, this is Lois Houston and Nikita Abraham signing off.   00;13;52;15 - 00;16;33;21 That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

1 Aug 202314min

In this episode, Lois Houston and Nikita Abraham are joined by MySQL Developer Advocate Scott Stroz to talk about MySQL Document Store, a NoSQL solution built on top of MySQL.   Oracle MyLearn: https://mylearn.oracle.com/   Oracle University Learning Community: https://education.oracle.com/ou-community   MySQL: https://dev.mysql.com/doc/   Oracle MySQL Blog: https://blogs.oracle.com/mysql/   LinkedIn: https://www.linkedin.com/showcase/oracle-university/   Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, and the OU Studio Team for helping us create this episode.   ---------------------------------------------------------   Episode Transcript:   00;00;00;00 - 00;00;38;19 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we’ll bring you foundational training on the most popular Oracle technologies. Let's get started! Hello and welcome to the Oracle University Podcast. I'm Lois Houston, Director of Product Innovation and Go to Market Programs with Oracle University. And with me is Nikita Abraham, Principal Technical Editor.   00;00;38;22 - 00;00;59;15 Hi, everyone! For the last two weeks, we've been talking about MySQL and NoSQL. And in today's special episode, we're going to dive a little deeper and focus on MySQL Document Store with MySQL Developer Advocate Scott Stroz. Hi, Scott! Thanks for being here today. Why don't you tell us a little more about yourself? Hi, Niki. Hi, Lois.   00;00;59;19 - 00;01;16;10 I'm happy to be here with you guys. Like you said, I'm a developer advocate for MySQL. I've been a software developer for over 20 years. In that time frame, MySQL is the only thing in my development stack that hasn't changed. I used MySQL in my first job as a web developer, and I still use it today.   00;01;16;12 - 00;01;41;26 And for those who may not know, the best way to describe what a developer advocate does is our job is to make developers better at their job. Scott, we discussed NoSQL last week, but for anyone who missed that episode, can you give us a high-level explanation of what NoSQL means? Before I can explain NoSQL, we should probably go over what we mean by a relational database.   00;01;41;27 - 00;02;06;10 In a relational database, data is stored in tables. Each table consists of multiple columns, and each column holds a specific data type - a string, a number, a date, etc. In many cases, the data in one table relates to data in another table. This is where the relational part comes from and data is stored in rows or records. In a relational database, data is often very structured.   00;02;06;12 - 00;02;31;29 SQL or structured query language is used to retrieve, update, add, or delete rows from the database, and NoSQL database at its most basic level is a storage mechanism that does not use the table structure I just mentioned. Data is often stored as JSON documents, as a blob of text. Our audience may find it interesting that NoSQL does not necessarily mean there is no SQL used at all.   00;02;32;01 - 00;02;58;25 In some cases, NoSQL actually stands for not only SQL. Interesting. So, what are JSON documents? JSON is an acronym for JavaScript Object Notation and it is a textual representation of a data structure. JSON objects are wrapped in curly braces and consist of key-value pairs. The values can be simple, such as strings or numbers, or they can also be other JSON objects or arrays.   00;02;58;28 - 00;03;21;09 JSON arrays are wrapped in brackets and consist of comma-separated values that can be simple values again, such as numbers or strings. But they can also be other JSON objects or other arrays. This means that data in JSON objects can be nested with many levels. The best thing about JSON is that it's ubiquitous and can be used in almost any programing language.   00;03;21;11 - 00;03;41;21 I say almost every because I've not used every programing language. So, I'm covering myself just in case there's one out there that doesn't have JSON support. That's pretty good. Okay. It's easy to pick up on how to read it as well. When I first started using JSON, it was like trying to read The Matrix. But now I can read JSON just as easy as I can read a book.   00;03;41;22 - 00;04;03;08 Why would a developer choose to use a NoSQL solution? Can you give us a few examples of that? That is a great question, Niki. When starting out a new project, when a data structure doesn't exist, it may make sense to use a NoSQL solution. In other words, if the schema changes frequently, it may make sense not to have a schema.   00;04;03;10 - 00;04;22;25 Then, once the scheme is matured, the data can be parsed out into a relational database model. I come from the school of thought that all data should be in tables and columns with the proper relationships defined and be very structured. But here's the thing that took me a while to accept. Not all data is structured and not all data needs to be related to other data.   00;04;23;00 - 00;04;49;12 Things like application configuration or user preferences most likely don't need to be stored in a relational database and may work best being stored as JSON. One of the biggest uses of storing JSON is ingesting data from third-party sources. Many applications use external APIs to retrieve data. In those cases, we have no control over the schema that's used for that data.   00;04;49;15 - 00;05;08;28 In trying to account for changes in the schema that will inevitably come is going to be a difficult task. So, storing that data in JSON makes a lot more sense. That makes sense. And then you can handle the JSON as you need to. Okay, let's get to our main topic of discussion for today. What is MySQL Document Store?   00;05;09;00 - 00;05;35;09 MySQL Document Store is a NoSQL implementation built on top of MySQL. JSON documents are stored in a MySQL database table using the InnoDB storage engine. CRUD operations - create, retrieve, update, and delete - are abstracted from the developer through an easy-to-use API. Application developers, whether it's web applications, mobile applications, or native operating system applications, communicate with MySQL Document Store over the X-protocol, which uses port 33060 instead of the standard port 3306.   00;05;35;11 - 00;06;00;10 The nomenclature of NoSQL databases differs from relational databases, right? Can you explain some of the basic terms that are used? Developers who come from a relational database background may initially be confused by some of the terms used to describe the structure where the documents are stored.   00;06;00;12 - 00;06;23;04 I know I was. We use three main terms to describe the structure of MySQL document store – schema, collection, and document. In relational database parlance, a schema would be akin to a database. A collection would be the same as a table, and a document, the actual JSON that we're storing, would be like a row in that table.   00;06;23;07 - 00;06;56;07 So, what happens under the covers when using MySQL Document Store? So, any time we use the document store API, the commands are turned into SQL commands that are then executed on the database server. When developers use the MySQL Document Store API to create a new schema, behind the scenes, MySQL creates a new database, which should be the same as running a SQL query to create a new database. When a new collection is created, MySQL creates a new table in the database using a create table query, and it adds three columns to that table.   00;06;56;09 - 00;07;24;09 The first is _id. This column serves as the primary key when a document is saved to the database, and the key named _id is not provided. MySQL autogenerates the id, saves it to this column, and then also injects it into the JSON document. The next column is doc. This column stores the JSON documents using the JSON data type. And then the last column is _json_schema.   00;07;24;12 - 00;07;57;09 And it's used to validate the schema of documents that are added to the collection. CRUD operations follow the same process. For instance, when we make a call to the API to retrieve documents, on the backend, that command is converted into a SELECT statement using native JSON functions to return the document. If developers want to see what commands are executed when using MySQL Document Store, they can enable the general log setting and then view the log after executing API commands.   00;07;57;12 - 00;08;25;29 Are you attending Oracle CloudWorld 2023? Learn from experts, network with peers, and find out about the latest innovations when Oracle CloudWorld returns to Las Vegas from September 18 through 21. CloudWorld is the best place to learn about Oracle solutions from the people who build and use them. In addition to your attendance at CloudWorld, your ticket gives you access to Oracle MyLearn and all of the cloud learning subscription content as well as three free certification exam credits.   00;08;26;03 - 00;08;53;11 This is valid from the week you register through 60 days after the conference. So, what are you waiting for? Register today! Learn more about Oracle CloudWorld at www.oracle.com/cloudworld. Welcome back! Scott, just before the break, you mentioned something about schema validation. Isn't being schema-less one of the advantages of using a NoSQL solution?   00;08;53;15 - 00;09;16;22 Being schema-less is one of the features of NoSQL databases that developers like more than others. There may be times when we must ensure that documents added to a collection match a certain syntax or schema. For example, we may want to ensure that documents always have a specific key or that a particular key, if it exists, is numeric or some other data type.   00;09;16;24 - 00;09;38;20 When the collection is created, we can define those rules using a JSON object with a specific syntax. On the backend, MySQL will create a check constraint using that JSON and any time a document is saved to a collection, it's validated to ensure it matches the rules or schema we define. If the document does not adhere to that schema, MySQL will throw an error.   00;09;38;22 - 00;10;00;13 What do developers need to do to start using MySQL Document Store.  In terms of configuring MySQL? They don't need to do anything. The X-plugin, which is what's used for communication between the server and the client, has been installed by default since version 8.0.1. So, if they're using a newer version of MySQL 8, they already have access to Document Store.   00;10;00;15 - 00;10;24;28 You may need to make some changes to the network infrastructure to allow traffic over port 33060, but for a network administrator, that should be easy to accomplish. MySQL Document Store is also available on all editions. It's available in Enterprise Edition and the Community Edition as well. And I should note that Oracle Cloud Infrastructure is currently the only cloud provider supporting MySQL Document Store for their MySQL cloud implementations.   00;10;25;00 - 00;10;48;27 Scott, what programing languages are supported for use with MySQL Document Store? There are quite a few languages that are supported. We have connectors or SDKs, as some people call them, or Java, which also works with other Java-based languages, such as Groovy and Kotlin. We also have connectors for C++, Python, PHP, .Net, Node.js and MySQL Shell.   00;10;49;00 - 00;11;14;18 Our listeners have probably heard of most of these with the exception of MySQL Shell. What is that? MySQL Shell is a command line interface that allows us to connect to and manage MySQL database instances. We can use it to create document store schemas and collections easily, but it can do so much more. We can manage to configure MySQL instances, including creating and configuring server replication and clustering.   00;11;14;20 - 00;11;39;15 It even offers a sandbox feature where we can quickly spin up MySQL instances for testing, replication, and clustering configuration without the need to stand up full MySQL server instances. There are three modes in MySQL Shell. By default, MySQL Shell starts in JavaScript mode where the commands we use follow JavaScript syntax. There is a Python mode where the commands we use follow Python syntax.   00;11;39;17 - 00;12;05;17 And finally, there is SQL mode where we can run standard SQL queries. SQL mode functions very much like the older MySQL command line client. And what are the advantages of using MySQL Document Store? I think the best feature of MySQL Document Store is that because the documents are stored in a database table using the JSON data type, we can use native SQL to run complex queries for reports and analytics.   00;12;05;19 - 00;12;27;13 MySQL has quite a few native functions for working with JSON, which can help extract data from a document store easier than in other solutions. Another big advantage is that MySQL Document Store is fully ACID compliant because the JSON documents are stored using the InnoDB storage engine. What does it mean for a database to be ACID compliant?   00;12;27;15 - 00;12;55;27 In databases, data is updated, added, deleted, etc. in transactions or steps. Sometimes, these transactions are a single query. Other times they may be multiple queries run in succession. Thezacronym ACID, which stands for atomicity, consistency, isolation, and durability, ensures that these transactions are processed in a reliable manner. Atomicity guarantees that each transaction is treated as a single unit.   00;12;55;29 - 00;13;30;24 If one part of the transaction fails, the entire transaction fails. Consistency ensures that every part of the transaction follows all database constraints. If the data in every part of the transaction violates these constraints, the entire transaction fails. Isolation means that transactions are run in isolation so that they do not interfere with each other. And finally, durability means that once a transaction is committed, meaning all parts of the transaction is succeeded, that the data is written to the database. Database is considered ACID compliant when it adheres to all of this.   00;13;30;26 - 00;13;55;16 Before we let you go, if people want more information about MySQL Document Store, where can they find it? I think the best place to get more information is from the documentation on the MySQL site at dev.mysql.com/doc. There are also quite a few posts about MySQL Document Store on the MySQL blog at blogs.oracle.com/mysql.   00;13;55;19 - 00;14;15;06 Wonderful! Thank you so much, Scott, for taking the time to be with us today. Oh, thanks for having me. Well, folks, that brings us to the end of this episode. We hope you've learned something new and that you'll join us next week for a discussion on Oracle Cloud Infrastructure's maximum security architecture. Until then, this is Lois Houston and Nikita Abraham signing off.   00;14;15;09 - 00;16;57;25 That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

25 Juli 202314min

High availability, data model flexibility, elastic scalability… If these words have piqued your interest, then this is the episode for you!   Join Lois Houston and Nikita Abraham, along with Autumn Black, as they discuss how Oracle NoSQL Database Cloud Service is designed for today’s most demanding applications, ensuring fast and predictable single-digit millisecond response times at scale, even as throughput requirements change.   Oracle MyLearn: https://mylearn.oracle.com/ Oracle University Learning Community: https://education.oracle.com/ou-community LinkedIn: https://www.linkedin.com/showcase/oracle-university/ Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Ranbir Singh, and the OU Studio Team for helping us create this episode.   -------------------------------------------------------   Episode Transcript: 00;00;00;00 - 00;00;38;28 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we’ll bring you foundational training on the most popular Oracle technologies. Let's get started. Hello and welcome to the Oracle University Podcast. I'm Nikita Abraham, Principal Technical Editor with Oracle University, and with me is Lois Houston, Director of Product Innovation and Go to Market Programs.   00;00;39;01 - 00;01;04;26 Hi there! Many of today's modern applications face a lot of different challenges. These could be anything from managing data models that are continuously evolving to providing UIs that are highly responsive. Yeah, and that's because in today's environment, no one wants to go to an interface where they have to wait for minutes or even seconds, really. Exactly. So innovations have to happen rapidly and they have to keep up with the demands of the customer base.   00;01;05;01 - 00;01;27;25 Since we discussed the MySQL database in our last episode, we thought it would only make sense to talk about NoSQL next. And we're very happy to have Oracle Database Specialist Autumn Black joining us again. Hi Autumn. What can you tell us about Oracle NoSQL Database Cloud Service? The Oracle NoSQL Database Cloud Service really offers a lot of great properties.   00;01;27;28 - 00;01;53;28 It's serverless, always on, and fully managed by Oracle. Developers can focus on application development without having to worry about managing servers, storage expansion, cluster deployment, software installation, or even backups. It's fully elastic. You just provision the throughput and storage capacity your application requires. Resources are automatically allocated and they scale accordingly to meet the dynamic workload requirements that you have.   00;01;54;01 - 00;02;18;16 The service provides predictable low latency for all types of application workload, whether it's at the peak workload or at a very low level of the workload. The latency is always at sub 10 milliseconds. Flexible data model supports document, columnar, and key value formats to capture any of the kinds of data you may have. These data models can interoperate with each other using a single application interface.   00;02;18;18 - 00;02;49;04 It offers developer-friendly APIs, and it's integrated with popular application development tools. It comes with enterprise-grade security. It's cost-effective. Lastly, and most importantly, it makes hybrid cloud or multi-cloud deployment with Oracle NoSQL Database extremely easy. This enables enterprises to expand their business operations, open up new business potential and opportunities. Autumn, you said Oracle NoSQL Database Cloud Service is fully managed by Oracle.   00;02;49;06 - 00;03;09;17 What does that exactly mean? What are the things that Oracle really handles? Oracle's responsible for the back-end software and hardware. The developer gets to focus on the application and who can use that application. Today's modern developers are not interested in what's going on behind the scenes. They want to be sure that they can get what they want when they want it.   00;03;09;20 - 00;03;36;03 Could you tell us about some use cases where we’d see Oracle NoSQL Database Cloud Service being used? We see it in mobile applications. We see it in the Internet of Things. We see it in a 360-degree customer view that's extremely prevalent in banking applications. We see it in the user profile management catalog data, such as what you would see maybe on Amazon, content management, online advertising, and big-time real data, social media.   00;03;36;05 - 00;03;59;20 And we also see it being used in the area of gaming. We've heard that Oracle NoSQL Database Cloud Service is extremely developer-friendly. How exactly is it developer-friendly? You can deploy your application to the data store in a matter of minutes. We have SDKs available in all the popular languages. We have Java, Python, Node.js, Go. We also have Spring.   00;03;59;22 - 00;04;24;24 We have open standards for our APIs, and we use the SQL language. Many, many folks already know and understand the SQL language and they can easily adapt to our APIs. We basically allow for simple and complex data types. We have our developer tools in Eclipse, IntelliJ, and Visual Studios. And for those who want to play with the service a little bit, you have full access to the service through the UI console.   00;04;24;27 - 00;04;48;05 Does Oracle NoSQL Database Cloud Service support different data models? You get to select that depending upon what you need. There's fixed schema, right? Sometimes referred to as a columnar store, sometimes referred to as just straight schema. And a JSON document? Sometimes it's referred to as just documents, and sometimes it's referred to as a JSON document. Other times, it gets referred to as schema lists.   00;04;48;08 - 00;05;07;17 We can store both of these within the same table, and we also have the ability to store a key value, which in some sense is really nothing more than a very simplified JSON document where you sort of have a primary key known as your key. Then you have your value and then oftentimes this value is really nothing more than a JSON document.   00;05;07;20 - 00;05;32;10 We have complete interoperability between either of these different types of data models. And what's the pricing like? Our pricing model is fairly straightforward. You basically pay for what you provision and different workflows can provision different amounts. The provision occurs on a per-table level that we have. We call it a read unit or write unit and storage. And each of those different parameters can be adjusted differently for each of the tables that you have.   00;05;32;12 - 00;05;44;08 So, it's a very, very simple model, very straightforward. And the cost for each one of those is extremely inexpensive.   00;05;44;10 - 00;06;14;09 Have you been wanting to earn an Oracle certification? Well, there's never been a better time than the present. Now through August 31st, you can choose from over 20 different Oracle certifications and take up to four exams for free, including foundation, associate, and professional-level Oracle Cloud Infrastructure certifications. You can also learn and get certified on Oracle Cloud Applications Business Processes for Human Capital Management, Financials, Customer Experience, Supply Chain, and Procurement.   00;06;14;13 - 00;06;40;25 And did I mention this was all free? Oracle Cloud training and certifications empower you to explore limitless possibilities in the cloud landscape. Gain the knowledge and skills needed to design, deploy, secure, and operate modern cloud infrastructure and applications with confidence. You can go to education.oracle.com for more details. What are you waiting for? Get certified today.   00;06;40;27 - 00;07;03;24 Welcome back. Now that we've covered all of that, let's get down to business. What is Oracle NoSQL Database Cloud Service? How does it help one’s business? Well, really, it's a client server architecture. On the client side, an application interacts with NoSQL drivers, or sometimes more commonly referred to as our SDK. So, you develop the application.   00;07;03;25 - 00;07;31;08 And then at compile time, you include the SDK in that. Drivers are available for Java, Python, Node.js, Go, Spring, and C-Sharp. So then the application runs and it does database operations like insert, update, query, delete against the NoSQL tables that are stored on the server side. So from the developer’s point of view, that's all they need to know. It's extremely simple. NoSQL tables can be created in seconds.   00;07;31;10 - 00;08;01;08 Developers can start right away to develop and deploy their applications. Businesses can focus on rapid innovations to better serve their customer’s needs and expectations. So what you're saying is developers and IT don't need to manage any computing, infrastructure, or software updates. The NoSQL service comes with the high availability built in. So, all of the underlying compute services and software maintenance, all of that is fully managed by Oracle, which is hosting the NoSQL tables.   00;08;01;11 - 00;08;24;10 Database administrators will work on the authentication, the roles, the privileges, and the other types of access that are used to access the tables. Autumn, earlier on, we spoke about how easy it is to use Oracle NoSQL Database Cloud Service to develop your application. Can you talk about how NoSQL drivers connect to tables and perform database operations? So, each table has a couple of different key components.   00;08;24;12 - 00;08;49;16 The first one is the data component. So, it consists of a table definition or flexible data model, supports columnar key value or document models. We support many different data types, including integer, string, binary, long double, array, JSON, record, and a few others. Each column can be defined by a particular data type. So that could be integers, strings, and JSON columns, right?   00;08;49;16 - 00;09;06;21 Then we have a primary key which is identified. The primary key sort of doubles as the shard key and the shard key can be either a sort of complete copy of the primary key, or you can have a multicolumn key where some of those columns is your primary key and then other columns in that are your shard key.   00;09;06;24 - 00;09;30;25 The other component of a table is the capacity that is provisioned. What's an example of this? We have three units. We have write units, read units, and we have storage. Storage is expressed in gigabytes and this is the maximum amount of storage that is allocated for this particular table. Reads and writes are expressed in units. Each of those units represents a one kilobyte read or write for every second.   00;09;30;27 - 00;09;52;17 So, if you have an application where you wanted to do multiple reads a second, then you would allocate multiple read units for that particular table. And these can be dynamically adjusted. What are the different ways in which you can experience Oracle NoSQL Database Cloud Service? The first is accessing the cloud service to the service UI, probably more commonly referred to as the UI console.   00;09;52;19 - 00;10;20;12 The UI console provides basic capability. You can create and delete tables and then you can execute very simple, straightforward SQL statements against your table. If you want a richer experience, where you have an application that's developed. And then through all of our SDKs, you'll have the full experience and you'll be able to do the complete set of SQL statements that we offer. And then finally, we have what we call the NoSQL Cloud Simulator, essentially a single process version of our cloud.   00;10;20;15 - 00;10;40;06 It's very easy to use. Many of our customers use that for test and development, and the beauty with using that for testing development is there's no cost to you. There's no cost from the cloud service. You can develop your application, you can test it, and once you're ready to deploy it in the cloud, you might be able to do part of it through the UI or you could do it through your application.   00;10;40;06 - 00;11;07;14 Autumn, what makes Oracle NoSQL Database Cloud Service different? Well, there's a seamless multimodel. You have key value, fixed schema, you have schema-less, all at the same data store. The seamless SQL interoperates amongst any of these different kinds of data models. You have tunable ACID, you have shard local full ACID, you have parent tables for easy multiobject ACID. You can carefully balance the trade-offs of ACID and scale.   00;11;07;16 - 00;11;29;16 There is a fully managed cloud service. The throughput is provisioned, there is no lock-in. You have the ability to run as a fully managed service or you can take the NoSQL Database, run it anywhere. And if you want to run it in a hybrid environment, you can do that as well. Are there some additional resources that Oracle has, you know, where people can go to get more information?   00;11;29;18 - 00;11;56;04 I know we have the Developers Blog and blogs.oracle.com, but is there anything else? We have the Cloud Customer Connect, the developer community that we have for NoSQL. This gets monitored. We really have developers around the globe on the team so really this does get 24/7 coverage and we try to be very responsive to any types of questions that get posted on the forum and then we supply answers for all those questions.   00;11;56;06 - 00;12;18;19 Thank you so much, Autumn, for joining us through these last two episodes. We've learned so much from you. Learn more about the service by visiting mylearn.oracle.com and taking a look at our Oracle Cloud Data Management Foundations Workshop. You can also take skill checks to test your understanding of this topic. That brings us to the end of this episode.   00;12;18;19 - 00;12;41;26 In our next episode, we'll be joined by a very special guest who will talk about MySQL Document Store, a NoSQL solution that's built on top of MySQL. More on that next week. Until then, this is Lois Houston and Nikita Abraham signing off. That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes.   00;12;41;29 - 00;15;14;24 We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

18 Juli 202313min

In this episode, Lois Houston and Nikita Abraham are joined by Autumn Black to discuss MySQL Database, a fully-managed database service powered by the integrated HeatWave in-memory query accelerator.   Oracle MyLearn: https://mylearn.oracle.com/ Oracle University Learning Community: https://education.oracle.com/ou-community LinkedIn: https://www.linkedin.com/showcase/oracle-university/ Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Deepak Modi, Ranbir Singh, and the OU Studio Team for helping us create this episode.   ---------------------------------------------------------   Episode Transcript: 00;00;00;00 - 00;00;39;08 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we'll bring you foundational training on the most popular Oracle technologies. Let's get started. Hello and welcome to the Oracle University Podcast. You're listening to our second season Oracle Database Made Easy. I'm Lois Houston, Director of Product Innovation and Go to Market Programs with Oracle University.   00;00;39;10 - 00;01;08;03 And with me is Nikita Abraham, Principal Technical Editor. Hi, everyone. In our last episode, we had a really fascinating conversation about Oracle Machine Learning with Cloud Engineer Nick Commisso. Do remember to catch that episode if you missed it. Today, we have with us Autumn Black, who's an Oracle Database Specialist. Autumn is going to take us through MySQL, the free version and the Enterprise Edition, and MySQL Data Service.   00;01;08;05 - 00;01;39;16 We're also going to ask her about HeatWave. So let's get started. Hi, Autumn. So tell me, why is MySQL such a popular choice for developers? MySQL is the number one open-source database and the second most popular database overall after the Oracle Database. According to a Stack Overflow survey, MySQL has been for a long time and remains the number one choice for developers, primarily because of its ease of use, reliability, and performance.   00;01;39;17 - 00;02;08;22 And it's also big with companies? MySQL is used by the world's most innovative companies. This includes Twitter, Facebook, Netflix, and Uber. It is also used by students and small companies. There are different versions of MySQL, right? What are the main differences between them when it comes to security, data recovery, and support? MySQL comes in two flavors: free version or paid version.   00;02;08;24 - 00;02;45;05 MySQL Community, the free version, contains the basic components for handling data storage. Just download it, install it, and you're ready to go. But remember, free has costs. That stored data is not exactly secure and data recovery is not easy and sometimes impossible. And there is no such thing as free MySQL Community support. This is why MySQL Enterprise Edition was created, to provide all of those missing important pieces: high availability, security, and Oracle support from the people who build MySQL.   00;02;45;10 - 00;03;09;24 You said MySQL is open source and can be easily downloaded and run. Does it run on-premises or in the cloud? MySQL runs on a local computer, company's data center, or in the cloud. Autumn, can we talk more about MySQL in the cloud? Today, MySQL can be found in Amazon RDS and Aurora, Google Cloud SQL, and Microsoft Azure Database for MySQL.   00;03;09;27 - 00;03;35;23 They all offer a cloud-managed version of MySQL Community Edition with all of its limitations. These MySQL cloud services are expensive and it's not easy to move data away from their cloud. And most important of all, they do not include the MySQL Enterprise Edition advanced features and tools. And they are not supported by the Oracle MySQL experts.   00;03;35;25 - 00;04;07;03 So why is MySQL Database Service in Oracle Cloud Infrastructure better than other MySQL cloud offerings? How does it help data admins and developers? MySQL Database Service in Oracle Cloud Infrastructure is the only MySQL database service built on MySQL Enterprise Edition and 100% built, managed, and supported by the MySQL team. Let's focus on the three major categories that make MySQL Database Service better than the other MySQL cloud offerings: ease of use, security, and enterprise readiness.   00;04;07;03 - 00;04;44;24 MySQL DBAs tend to be overloaded with mundane database administration tasks. They're responsible for many databases, their performance, security, availability, and more. It is difficult for them to focus on innovation and on addressing the demands of lines of business. MySQL is fully managed on OCI. MySQL Database Service automates all those time-consuming tasks so they can improve productivity and focus on higher value tasks.   00;04;44;26 - 00;05;07;13 Developers can quickly get all the latest features directly from the MySQL team to deliver new modern apps. They don't get that on other clouds that rely on outdated or forked versions of MySQL. Developers can use the MySQL Document Store to mix and match SQL and NoSQL content in the same database as well as the same application.   00;05;07;19 - 00;05;30;26 Yes. And we're going to talk about MySQL Document Store in a lot more detail in two weeks, so don't forget to tune in to that episode. Coming back to this, you spoke about how MySQL Database Service or MDS on OCI is easy to use. What about its security? MDS security first means it is built on Gen 2 cloud infrastructure.   00;05;30;28 - 00;05;57;13 Data is encrypted for privacy. Data is on OCI block volume. So what does this Gen 2 cloud infrastructure offer? Is it more secure? Oracle Cloud is secure by design and architected very differently from the Gen 1 clouds of our competitors. Gen 2 provides maximum isolation and protection. That means Oracle cannot see customer data and users cannot access our cloud control computer.   00;05;57;15 - 00;06;27;09 Gen 2 architecture allows us to offer superior performance on our compute objects. Finally, Oracle Cloud is open. Customers can run Oracle software, third-party options, open source, whatever you choose without modifications, trade-offs, or lock-ins. Just to dive a little deeper into this, what kind of security features does MySQL Database Service offer to protect data? Data security has become a top priority for all organizations.   00;06;27;12 - 00;06;55;17 MySQL Database Service can help you protect your data against external attacks, as well as internal malicious users with a range of advanced security features. Those advanced security features can also help you meet industry and regulatory compliance requirements, including GDPR, PCI, and HIPPA. When a security vulnerability is discovered, you'll get the fix directly from the MySQL team, from the team that actually develops MySQL.   00;06;55;19 - 00;07;22;16 I want to talk about MySQL Enterprise Edition that you brought up earlier. Can you tell us a little more about it? MySQL Database Service is the only public cloud service built on MySQL Enterprise Edition, which includes 24/7 support from the team that actually builds MySQL, at no additional cost. All of the other cloud vendors are using the Community Edition of MySQL, so they lack the Enterprise Edition features and tools.   00;07;22;22 - 00;07;53;24 What are some of the default features that are available in MySQL Database Service? MySQL Enterprise scalability, also known as the thread pool plugin, data-at-rest encryption, native backup, and OCI built-in native monitoring. You can also install MySQL Enterprise Monitor to monitor MySQL Database Service remotely. MySQL works well with your existing Oracle investments like Oracle Data Integrator, Oracle Analytics Cloud, Oracle GoldenGate, and more.   00;07;53;27 - 00;08;17;20 MySQL Database Service customers can easily use Docker and Kubernetes for DevOps operations. So how much of this is managed by the MySQL team and how much is the responsibility of the user? MySQL Database Service is a fully managed database service. A MySQL Database Service user is responsible for logical schema modeling, query design and optimization, define data access and retention policies.   00;08;17;22 - 00;08;44;26 The MySQL team is responsible for providing automation for operating system installation, database and OS patching, including security patches, backup, and recovery. The system backs up the data for you, but in an emergency, you can restore it to a new instance with a click. Monitoring and log handling. Security with advanced options available in MySQL Enterprise Edition.   00;08;44;28 - 00;09;01;18 And of course, maintaining the data center for you. To use MDS, users must have OCI tenancy, a compartment, belong to a group with required policies.   00;09;01;21 - 00;09;28;28 Did you know that Oracle University offers free courses on Oracle Cloud Infrastructure? You'll find training on everything from cloud computing, database, and security to artificial intelligence and machine learning, all of which is available free to subscribers. So get going. Pick a course of your choice, get certified, join the Oracle University Learning Community, and network with your peers. If you're already an Oracle MyLearn user, go to MyLearn to begin your journey.   00;09;29;03 - 00;09;40;24 If you have not yet accessed Oracle MyLearn, visit mylearn.oracle.com and create an account to get started.   00;09;40;27 - 00;10;05;20 Welcome back! Autumn, tell us about the system architecture of MySQL Database Service. A database system is a logical container for the MySQL instance. It provides an interface enabling management of tasks, such as provisioning, backup and restore, monitoring, and so on. It also provides a read and write endpoint, enabling you to connect to the MySQL instance using the standard protocols.   00;10;05;28 - 00;10;31;27 And what components does a MySQL Database Service DB system consist of? A computer instance, an Oracle Linux operating system, the latest version of MySQL server Enterprise Edition, a virtual network interface card, VNIC, that attaches the DB system to a subnet of the virtual cloud network, network-attached higher performance block storage. Is there a way to monitor how the MySQL Database Service is performing?   00;10;31;29 - 00;10;59;29 You can monitor the health, capacity, and performance of your Oracle Cloud Infrastructure MySQL Database Service resources by using metrics, alarms, and notifications. The MySQL Database Service metrics enable you to measure useful quantitative data about your MySQL databases such as current connection information, statement activity, and latency, host CPU, memory, and disk I/O utilization, and so on.   00;11;00;03 - 00;11;23;15 You can use metrics data to diagnose and troubleshoot problems with MySQL databases. What should I keep in mind about managing the SQL database? Stopped MySQL Database Service system stops billing for OCPUs, but you also cannot connect to the DB system. During MDS automatic update, the operating system is upgraded along with patching of the MySQL server.   00;11;23;17 - 00;11;49;15 Metrics are used to measure useful data about MySQL Database Service system. Turning on automatic backups is an update to MDS to enable automatic backups. MDS backups can be removed by using the details pages and OCI and clicking Delete. Thanks for that detailed explanation on MySQL, Autumn. Can you also touch upon MySQL HeatWave? Why would you use it over traditional methods of running analytics on MySQL data?   00;11;49;18 - 00;12;18;01 Many organizations choose MySQL to store their valuable enterprise data. MySQL is optimized for Online Transaction Processing, OLTP, but it is not designed for Online Analytic Processing, OLAP. As a result, organizations that need to efficiently run analytics on data stored in MySQL database move their data to another database to run analytic applications such as Amazon Redshift.   00;12;18;04 - 00;12;41;22 MySQL HeatWave is designed to enable customers to run analytics on data that is stored in MySQL database without moving data to another database. What are the key features and components of HeatWave? HeatWave is built on an innovative in-memory analytics engine that is architected for scalability and performance, and is optimized for Oracle Cloud Infrastructure, OCI.   00;12;41;24 - 00;13;05;29 It is enabled when you add a HeatWave cluster to a MySQL database system. A HeatWave cluster comprises a MySQL DB system node and two or more HeatWave nodes. The MySQL DB system node includes a plugin that is responsible for cluster management, loading data into the HeatWave cluster, query scheduling, and returning query results to the MySQL database system.   00;13;06;02 - 00;13;29;15 The HeatWave nodes store data and memory and processed analytics queries. Each HeatWave node contains an instance of the HeatWave. The number of HeatWave nodes required depends on the size of your data and the amount of compression that is achieved when loading the data into the HeatWave cluster. Various aspects of HeatWave use machine-learning-driven automation that helps to reduce database administrative costs.   00;13;29;18 - 00;13;52;11 Thanks, Autumn, for joining us today. We're looking forward to having you again next week to talk to us about Oracle NoSQL Database Cloud Service. To learn more about MySQL Data Service, head over to mylearn.oracle.com and look for the Oracle Cloud Data Management Foundations Workshop. Until next time, this is Nikita Abraham and Lois Houston signing off.   00;13;52;14 - 00;16;33;05 That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

11 Juli 202314min

Join Lois Houston and Nikita Abraham, along with special guests Nancy Kramer and Betina Tagle from Oracle’s corporate security organization, as they discuss the steps you can take to evaluate your organization’s security, privacy, and compliance requirements using Oracle Cloud Infrastructure. They also talk about the resources that are available to help you do so.   Oracle MyLearn: https://mylearn.oracle.com/ Oracle University Learning Community: https://education.oracle.com/ou-community Subscribe to Security Updates: https://www.oracle.com/security-alerts/ Oracle Trust Center: https://www.oracle.com/trust/ OCI CAIQ: https://www.oracle.com/corporate/security-practices/cloud  LinkedIn: https://www.linkedin.com/showcase/oracle-university/ Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, and the OU Studio Team for helping us create this episode.   --------------------------------------------------------   Episode Transcript:  00;00;00;00 - 00;00;38;16 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we’ll bring you foundational training on the most popular Oracle technologies. Let's get started. Hello and welcome to the Oracle University Podcast. I'm Nikita Abraham, Principal Technical Editor with Oracle University, and with me is Lois Houston, Director of Product Innovation and Go to Market Programs.   00;00;38;20 - 00;01;01;13 Hi there. In today's special episode, we're going to talk about all the steps you can take to evaluate your organization's security, privacy, and compliance requirements using Oracle Cloud Infrastructure. We'll also explore some of the resources that are available to help you do so. And to tell us all about it, we're joined by two guests from Oracle's corporate security organization.   00;01;01;16 - 00;01;32;25 Nancy Kramer is a Senior Director in Global Information Security. She has 20 years of experience in risk management, security, privacy, and compliance audits involving complex business processes and IT systems. She also provides thought leadership, including engagement with industry organizations. Dr. Betina Tagle is also with Global Information Security. She has over 20 years of experience with cybersecurity and compliance in both the private and public sector.   00;01;32;27 - 00;01;52;26 Thank you so much, Nancy and Betina, for being with us today. Yes, this is such an important topic to learn more about. I'm really interested in what you have to share with us. Thank you so much for having us. We are delighted to help our customers learn more about how to securely reap the benefits of cloud. Thanks for this opportunity, Niki and Lois.   00;01;52;28 - 00;02;25;26 As organizations adopt cloud services, they're seeking guidance on evaluating cloud service providers. Our goal is to offer helpful insights on the approach. Let's start with setting some context. What kind of challenges do organizations face in their cloud adoption journey? Organizations continue to migrate business-critical applications and workloads to the cloud. The benefits are compelling. Leveraging the cloud lets organizations focus on their core mission and minimize capital expenditure.   00;02;25;29 - 00;03;08;09 With cloud services, organizations still own their data while leveraging the expertise, economy of scale, technical flexibility, and scalability offered by their cloud providers. When organizations are considering their cloud strategy, they need to consider their security, privacy, and compliance objectives from internal and external sources, compiling their requirements for the cloud service providers. For example, external requirements may include applicable laws and regulations based on the organization's location, their customer location, industry, or the type of data they process.   00;03;08;12 - 00;03;50;02 Organizations would benefit from a thorough analysis of the regulatory environment by their legal team. Internal requirements may be defined by the organization's Board of Directors, CEO, CISO, and other executives, as well as internal policies and contractual commitments to their customers. Oracle Cloud Infrastructure, or OCI, provides services, features, and documentation resources to support these customer obligations. Oracle University and OCI also offer helpful courses to guide customers through securing their cloud tendencies using various OCI features and services.   00;03;50;03 - 00;04;22;19 I want to come back to those courses later, but first, who does what in the cloud? Which operational technology management tasks are handled by the cloud provider and which are the customer’s responsibility? I think it will help if I start by defining the categories of Oracle offerings and summarizing who does what per category. This will clarify the notion of the shared management model that is predominant in the cloud as well as the relative scope of available security assurance validations.   00;04;22;22 - 00;04;57;08 OCI services can be used to build and operate computing environments, which include data analysis, storage, system integrations, enterprise workloads, and cloud native or containerized applications. Oracle manages the hosted tools, but the customer is responsible for how they build, configure, and use these tools, and for the data processed in their tenancies. Some examples of OCI services are compute and autonomous database.   00;04;57;10 - 00;05;30;11 Exactly right, Betina. In contrast, cloud applications are hosted using a Software as a Service or SaaS model in which the cloud provider, such as Oracle, manages the cloud applications and the underlying infrastructure. Customers are responsible for how they configure and use these SaaS applications and for the data processed in their cloud tendencies. Examples of these services include Enterprise Resource Planning, ERP, and Human Capital Management, or HCM.   00;05;30;13 - 00;05;59;11 Customers are also responsible for securing any third-party integration associated with these SaaS offerings, as well as any custom code extension scripts that they add to the applications. Let me highlight the differences a bit more in relation to the traditional on-premises model where companies such as Oracle provide hardware and software that customers install, deploy, and manage in their own computing environments.   00;05;59;13 - 00;06;25;23 The customer is wholly responsible for the management of the entire technology environment in which those products are deployed and operated, as well as the data they process. That makes sense. Right, Lois. And Oracle strongly recommends that customers protect the computing environment they manage by installing security updates delivered through the Critical Patch Update, CPU, and Security Alert programs without delay.   00;06;25;26 - 00;06;59;08 Customers can view and even subscribe to notifications about these security updates at oracle.com/security-alerts. Just to summarize, cloud providers are responsible for the security of the cloud, and customers are responsible for security in the cloud. They still decide on what data to process, where, and how. No matter what type of cloud service, OCI or SaaS, customers should still do the following.   00;06;59;08 - 00;07;34;01 Implement settings for authentication and authorization per their security and privacy requirements for accounts and passwords. Manage access for user accounts, including auditing which user accounts have access to what data. Monitor the available logs and reports, and respond to security events as well as determine what data to process and manage that data per their organization's security and privacy objectives. And you're going to be joining us in the Oracle University Learning Community soon for a special live event to talk about all of this in more detail, right?   00;07;34;02 - 00;07;57;13 Yes, we are. We are so excited to talk to everyone in the community. We're going to look at this topic in-depth in the special live event that is scheduled for June 29th. We will walk you through a tour of relevant resources on oracle.com so you can make sure to plan ahead and attend. And you'll need to be a member of the community if you want to attend.   00;07;57;14 - 00;08;17;13 So be sure you join and register for the event today. If you're not already a member of the community, you can sign up by visiting mylearn.oracle.com. You'll find all the live events, including the one Nancy and Betina will be hosting, on the community home page. So Betina, how can people see a preview of those oracle.com resources?   00;08;17;14 - 00;08;52;08 Oracle offers a wealth of security and cloud compliance information on the Oracle Trust Center found at oracle.com/trust. The site includes Oracle Corporate security practices, the cloud compliance site of third-party independent attestations to various global and regional compliance frameworks, and the Oracle Security blog. You can view the independent third-party certifications for OCI in the Trust Center by clicking the Attestations link under the Cloud Compliance heading.   00;08;52;10 - 00;09;22;06 Please note that each attestation is scoped to a particular set of cloud services and data center regions. Clicking on a compliance framework name retrieves a general description and the link to the entity providing the compliance framework. Some examples of global compliance frameworks include ISO 27001, SOC 2, Cloud Security Alliance Star, and Payment Card Industry Data Security Standards or PCI DSS.   00;09;22;08 - 00;09;45;23 This site also includes geography-specific standards, such as US FedRAMP, UK CyberEssentials, European Union Cloud Code of Conduct for Privacy, and IRAP for Australia. Obviously, this information is subject to change and is updated frequently.   00;09;45;25 - 00;10;11;16 Want to learn more about modern best practices for cloud applications? Oracle University offers business processes training for Human Capital Management, Financials, Customer Experience, Supply Chain, and Procurement. From now through August 31st, you can take the training for any of these areas and get certified for free as well. Oracle Cloud training and certifications empower you to explore limitless possibilities in the cloud landscape.   00;10;11;17 - 00;10;29;10 Gain the knowledge and skills needed to design, deploy, secure, and operate modern cloud infrastructure and applications with confidence. Go to education.oracle.com for more details. What are you waiting for? Get certified today.   00;10;29;12 - 00;11;04;29 Welcome back. Let's say there's a customer who wants to view OCI compliance attestations. I know they can always contact Sales to get these audit reports, but are there any self-service options? Yes. OCI customers can download OCI attestations of compliance to various compliance frameworks, including global information security standards, via the OCI Console and the Compliance Documents screen. There are multiple types of compliance documents available depending on the compliance framework or standard.   00;11;05;02 - 00;11;50;21 These include audit reports, attestations of compliance, and certificates of compliance. While logged in to the OCI Console for your tenancy, open the navigation menu. Click Identity and Security from the left menu that appears and then click Compliance on the screen that appears. The Compliance Documents page displays all available documents. You can filter, sort, and download the compliance documents of interest from this page via the command line interface and using the OCI API. Instructions for accessing compliance documents are also in the OCI product documentation at docs.oracle.com.   00;11;50;21 - 00;12;20;04 Thanks, Betina. That's great to know. Nancy, what else does Oracle offer to help our customers secure their cloud workloads running on OCI? I can offer two additional recommendations. The first is to take advantage of the in-depth OCI courses available through Oracle University. The OCI learning subscription includes introductory as well as expert-level courses.   00;12;20;06 - 00;12;59;02 To get started, there's an OCI Foundations learning path that describes the types of services OCI offers, has some basic recommendations for configuring your tenancy so that you meet your organization's security and privacy and compliance objectives. There are some key terminology you'll be introduced to in that learning path, as well as recommendations for architecture that provide resilience and business continuity. For example, OCI regions typically have multiple availability domains which each, in turn, have multiple fault domains.   00;12;59;05 - 00;13;31;01 OCI designed these availability and fault domains to have redundant systems so that a disruption of service in one availability domain does not result in a disruption to all availability domains in that region. These kinds of architectural and system design choices will help organizations avoid disruption of their operations when using systems running in OCI. A more advanced Oracle University offering is the Cybersecurity and Oracle Cloud learning path.   00;13;31;03 - 00;13;58;21 This group of courses explains the various OCI services that can be used to implement information security controls for identity management, networks, managing encryption keys, network firewalls, vulnerability scanning, compartment management practices, and so much more. And all of our OCI training in MyLearn is available free to anyone. So, there are really no barriers to learning if you're interested in diving in.   00;13;58;23 - 00;14;36;09 Those are some great course recommendations, Nancy and Bettina. So, Nancy, you said you had two recommendations. What's the other one? My second suggestion is for customers to evaluate the suitability of OCI cloud services by downloading and reading the detailed information about security practices from oracle.com. Oracle published Consensus Assessment Initiative Questionnaires, also called CAIQ or “CAKE” for various cloud services, including for OCI. CAIQs are industry-standard questionnaires from the Cloud Security Alliance.   00;14;36;12 - 00;15;11;14 That is a global organization which defined a set of controls companies can use to evaluate all types of cloud services to essential security controls in a fair and consistent manner. Each CAIQ answers several hundred questions, encompassing important information security control domains such as audit and assurance, application security, business continuity, change management, data center physical controls, human resources, identity and access management, incident management, and finally, threat and vulnerability management.   00;15;11;14 - 00;15;38;22 These publicly-available CAIQs encompass a broad set of information security policies and practices that are most relevant for cloud services. You can download the OCI CAIQ from oracle.com/trust by drilling down on the Security Practices for Cloud section. We will also add it in the show notes so that it's easily accessible.   00;15;38;25 - 00;16;07;16 Thank you, Betina and Nancy. This has been a very informative conversation. I had no idea about all the details that went into corporate security. I can't wait for the live tour of these oracle.com public resources in the Oracle University Learning Community on June 29th. We're very much looking forward to that event as well. Thank you so much for giving us a chance to share guidance about how organizations can evaluate the security, compliance, and privacy of cloud service providers.   00;16;07;18 - 00;16;31;02 We look forward to being back here again. We’d love that. Thanks again! In our next episode, we’ll look at Oracle Machine Learning with Cloud Engineer Nick Commisso. Until then, this is Nikita Abraham and Lois Houston signing off. That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes.   00;16;31;04 - 00;19;04;01 We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

27 Juni 202316min

In this special episode of the podcast, hosts Lois Houston and Nikita Abraham are joined by Rohit Rahi and Bill Lawson to talk about the free OCI training and certification being offered by Oracle University for a limited time.   Find out how you can choose from over 25 different Oracle Cloud Infrastructure and Oracle Cloud Applications Business Process certifications and gain the knowledge and skills needed to boost your career.   Oracle MyLearn: https://mylearn.oracle.com/ Oracle University Learning Community: https://education.oracle.com/ou-community Free Certification: https://education.oracle.com/oracle-oci-certification LinkedIn: https://www.linkedin.com/showcase/oracle-university/ Twitter: https://twitter.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, and the OU Studio Team for helping us create this episode.   ---------------------------------------------------------   Episode Transcript:   00;00;00;00 - 00;00;39;02 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we’ll bring you foundational training on the most popular Oracle technologies. Let's get started. Hello and welcome to the Oracle University Podcast. I'm Lois Houston, Director of Product Innovation and Go to Market Programs with Oracle University, and with me is Nikita Abraham, Principal Technical Editor.   00;00;39;05 - 00;01;06;02 Hey there! We're very excited about today's episode, which will be all about the free training and certification being offered for a limited time by Oracle University. And we're so excited to welcome two of our OU product development leaders to talk with us about the free training and certificate that's available. Rohit Rahi and Bill Lawson are joining us today. If you've been listening to the podcast, you already know Rohit because he was our special guest last season.   00;01;06;04 - 00;01;29;22 Rohit is Vice President, OCI Global Delivery, and has extensive experience in the cloud space. Bill is the Senior Director of Cloud Applications Product Management. His team looks after the new content development for Oracle Cloud Applications. All the great training that helps you successfully implement and use our cloud apps—his team creates it. Thank you so much, Bill and Rohit, for being with us today.   00;01;29;24 - 00;01;59;14 We're really excited to talk with you both. So, to start, Rohit, can you tell us a little about the free certification promotion in general? So, we have had free OCI training for a while now and have just launched a free certification exam promotion worldwide beginning June 1st and continuing through August 31st. Each participant in the promotion will get free access to OCI and Cloud Applications Business Process training.   00;01;59;16 - 00;02;25;00 They will also get two free exam attempts that they can apply towards any exam in the promotion. And what's the benefit of getting this training and certification from Oracle? This free promotion will help you acquire in-demand critical skills in Oracle Cloud computing, database, security, AI/ML, and application business processes to boost your career and deepen your core expertise. All of this while eliminating the cost barrier for getting certified.   00;02;25;01 - 00;02;53;16 When we're talking about gaining access to training, is it strictly training content or are there any other resources that will be made available? Well, we have packed a lot into this promotion. You will get access to Oracle MyLearn, where you can book your exams and access a library of learning and exam preparation materials. MyLearn is our one-stop platform where you get access to the content, training content, skill checks, exam prep material, all of it.   00;02;53;22 - 00;03;24;05 You will also have access to brand-new hands-on performance exams for select OCI and Cloud Applications certifications that will really help showcase your hands-on knowledge in real-life scenarios. And then there's the Race to Certification challenge, where you can complete race criteria and win prizes during your certification journey. You can also access Oracle University Learning Community for collaboration and idea sharing to help you better prepare for your free certification exam.   00;03;24;07 - 00;03;50;01 Wow. There really is a lot to offer. Now, who is this training for? Can an absolute beginner take this training or do you need to be more experienced to take it. Also, are there any prerequisites to participate in the promotion? Anyone can take this training. We have learning paths from the beginner to advanced levels. You can start with the free foundations classes and certifications for OCI and Data Management.   00;03;50;08 - 00;04;22;12 If you already have some knowledge, familiarity, and experience with OCI, you might want to look at the learning paths and certifications for architects, cloud developers, DevOps engineers, security engineers, cloud operations, machine learning engineers, data analysts, and database admins. There is really a lot to choose from. 21 tech exams in total. And if you're interested in learning more about Oracle Cloud Applications, you could take advantage of the free business process training and certifications for HCM, Financials, Sales, Procurement, and Supply Chain.   00;04;22;19 - 00;04;45;23 These provide a great opportunity to learn more about business processes as defined by Oracle's modern best practices and how our cloud applications modernize these processes to make running businesses even better. These classes and certifications are for any experience level from the recent college grad to the seasoned professional who wants to learn more about Oracle Cloud Applications.   00;04;46;00 - 00;05;03;15 That's awesome. Let's say I want to get started and enroll for this promotion. How would I go about doing that? Well. Well, you could start by going to education.oracle.com. All the information you need to know is on this page, including the details about the free training, which exams are included, and the Race to Certification challenge.   00;05;03;18 - 00;05;28;15 Yeah, that's right, Bill. This is a really exciting challenge we are running as part of the promotion in which you can earn prizes as you complete your learning. Like you said, all the information is on education.oracle.com and we are really happy to offer this opportunity for you to not only learn and certify for free, but also win additional prizes along the way.   00;05;28;17 - 00;05;52;09 Wow, that's really cool. Prizes—an added bonus! I thought Oracle Cloud Infrastructure was already free, Rohit. So what's really new here? You're absolutely right, Niki. The training for OCI is free and has been free for a while now. What is new in this promotion is the opportunity to get certified for free.   00;05;52;11 - 00;06;14;06 Want to get the inside scoop on Oracle University? Head on over to the all-new Oracle University Learning Community. Attend exclusive events. Read up on the latest news. Get firsthand access to new products and stay up-to-date with upcoming certification opportunities. If you're already an Oracle MyLearn user, go to MyLearn to join the community. You will need to log in first.   00;06;14;08 - 00;06;26;21 If you've not yet accessed Oracle My Learn, visit mylearn.oracle.com and create an account to get started. Join the community today.   00;06;26;24 - 00;06;52;29 Welcome back. Bill, I want to ask you about Oracle Cloud Apps Business Process training. For anyone who doesn't already know, what are these business processes and what sort of training do we offer on this? As I mentioned earlier, MyLearn has business process training related to HCM, ERP Financials, Procurement, Supply Chain Management, and Sales. For example, for HCM, there are processes such as Recruit to Onboard, which is in the Applicant life cycle.   00;06;53;01 - 00;07;22;15 Think about it. You as an employee, you have maybe once been contacted by a company through recruiting activities. Companies require processes to reach out to and identify potential candidates and set up interviews. You receive a job offer, you accept it. And on day one, you begin your onboarding process into the new company as a new hire. In a modern business, this is driven by technology and managed by various job roles within an organization, including you as the applicant, to move through the process quickly and efficiently on your career journey with the new company.   00;07;22;17 - 00;07;43;20 Other business processes for HCM include Hire to Retire, Payroll to Payment. You know we all like to get compensated for the hard work we do, right? And Career Planning to Development. For Financials processes such as Invoice to Cash, Procure to Pay, and Budget to Report. Within Sales, we have processes that we cover Lead to Opportunity, Opportunity to Quote, Quota to Order, and Order to Close, only to mention a few.   00;07;43;25 - 00;08;09;26 The Business Process training focuses on how these processes are managed within Oracle Cloud Applications, how data and control flows between the processes, the various job roles responsible for the activities and tasks for these processes, and the inputs and outcomes for each of them. Our content is rich text based, has captivating imagery, concepts explained by experts, product demonstrations, and quizzes to reinforce what you have learned.   00;08;10;01 - 00;08;35;00 Who would benefit most from this training, Bill? This training and certifications are for anyone who wants to build strong foundational knowledge of Oracle Cloud Business Processes to use, implement, and test Oracle Cloud Applications. You can be a business process owner, a functional user, an implementation project team member, an implementer, or on the user acceptance testing teams within your company or even university students.   00;08;35;05 - 00;09;03;12 It's so great that we have this free training for OCI and Cloud Apps. So, Rohit, what certifications are available for OCI? There are the two always free certifications, Foundations Associate certifications, one for OCI and one for Database Management. So, these are always free. And then we have 19 other certifications. For these, you would use the two free exam attempts that are included in the promotion.   00;09;03;12 - 00;09;26;08 You can find a list of all the exams on education.oracle.com. And Bill, what certifications are included for the business process training? For the business process training, there are five associate-level exams included for HCM, Financials, Sales, Procurement, and Supply Chain Management. This free promotion sounds like a great opportunity to learn some new things and get certified.   00;09;26;11 - 00;09;44;00 Bill, how many free exams can I take as part of the promotion? Can I choose any certification exam to take for free? The promotion includes two exam credits. Once you register through the promo page, these will be added to your MyLearn account. You can take any of the 26 exams that are part of the promotion.   00;09;44;02 - 00;10;03;22 You do have to register on education.oracle.com to get these exam credits though. And of course, you can always take the two OCI foundations exam which are free anytime and you don't have to pay for these exams. Yes, you're right. Good point, Rohit. And what happens if I don't pass the exam? You can retake any exam.   00;10;03;25 - 00;10;22;26 You can use the two credits on any of the exams included in the promotion. You can take two different exams or use both on one exam if you need to take a retake. And if I need more attempts or want to take more exams? You can buy additional exam credits through MyLearn for any exam, including the ones not part of this promotion.   00;10;22;27 - 00;10;44;15 So, let's think positive here. I've taken the exam and passed. Will I receive a digital badge or certification? How can I share this accomplishment with others? Absolutely, Niki, you can. You will have access to a digital badge when you pass the exam. These are available to you on MyLearn and you can share on social media, etc. Where can I go if I have more questions about this?   00;10;44;17 - 00;11;03;13 The best place to go is education.oracle.com. You'll find all the answers, including an FAQ section there. I want to know more about the contest you spoke about earlier. What do I have to do to win prizes and what kind of prizes are there? The contest combines the challenge of learning new skills and the opportunity to win prizes.   00;11;03;16 - 00;11;25;00 There are three sectors like there are in a racetrack, and as you complete each sector, you'll win prizes. Right, and at the end of the first sector, you will earn a free exam attempt and a special badge in the Oracle University Learning Community. When you complete the second sector, you earn a second free exam attempt and another badge in the community.   00;11;25;00 - 00;11;47;03 And when you complete the third and the final sector, you get yet another free exam attempt, if you're counting, that's three in total, and another community badge. But you will also get some additional prizes for this top tier, such as you will get access to our premium OCI labs for three months. Hmm, that's a pretty sweet deal if you ask me.   00;11;47;03 - 00;12;06;23 Free certifications and training, and you can win prizes on top of that! You're so right, Bill. Well, gentlemen, this has been very enlightening. There are lots of opportunities to learn new things and get certified as well. Thank you so much for joining us today and sharing about the free training and certifications that are available. Yeah, we're really excited to share this with our listeners.   00;12;06;24 - 00;12;27;05 Yeah. Thank you both for having us. Yes, it's been great to be back on the podcast with you both. Thank you. Don't forget this is only for a limited time from June 1st to August 31st. So, if you're wanting to take advantage, visit education.oracle.com, that's education.oracle.com, today and register for the promotion.   00;12;27;05 - 00;12;49;07 Well, that's all the time we have for today. Thank you so much for joining us. Until next week, this is Nikita Abraham and Lois Houston signing off. That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app.   00;12;49;10 - 00;15;17;10 See you again on the next episode of the Oracle University Podcast.

20 Juni 202313min