| Oracle® Retail Integration Cloud Service Oracle® Retail Integration Cloud Service Integration Security Guide Release 22.1.201.0 F56364-01 |
|
 Previous |
 Next |
| Oracle® Retail Integration Cloud Service Oracle® Retail Integration Cloud Service Integration Security Guide Release 22.1.201.0 F56364-01 |
|
Previous |
Next |
This section includes a number of specific questions related to security that are frequently asked by prospects, customers and implementers.
| Question | Answer |
|---|---|
| Does Integration Cloud Service support data encryption? | Yes. Sensitive Personal Data is stored in encrypted tablespace. All data is encrypted in transit, Integration Cloud Service uses TLS for secure transport of data. |
| Does Integration Cloud Service provide network segregation? | Yes. The Oracle Cloud network is isolated from the Oracle corporate network. Customer instances are separated down to the VLAN level. |
| Does Integration Cloud Service provide secure backups? | Yes. Backup is a standard process for the Integration Cloud Service. Database and application servers backed up both incrementally (daily) and fully (weekly). Backups are stored for at least 60 days. |
| Does Integration Cloud Service provide centralized logging? | Yes. All application and infrastructure logs are forwarded to a centralized Security Information and Event Management system. |
| Does Integration Cloud Service provide antivirus? | Yes. All files uploaded into Integration Cloud Service are scanned by antivirus and anti-malware software. All hosts in the cloud service are regularly patched with the latest critical patch updates. |
| Does Integration Cloud Service provide strong authentication options such as 2-factor, one-time Password? | Multi-Factor Authentication is an option if a customer chooses to license the Standard Tier of OCI IAM. |
| Does Integration Cloud Service include a configurable warning banner which is presented upon login? | Terms of Use is an option if a customer chooses to license the Standard Tier of OCI IAM. It presents disclaimers and acceptable use policies to users. |
| Does Integration Cloud Service implement access lists to secure each tier of the solution? | Yes. Communication between tiers within Integration Cloud Service is limited by subnet ingress security lists. |
| Does Integration Cloud Service include and support the capability to change default account passwords? | All user password management occurs in OCI IAM. |
| Does Integration Cloud Service support Roles with defined access levels? | Yes. Oracle Retail Enterprise roles span Oracle Retail applications. Within Integration Cloud Service, privileges and duties can be assigned to roles to define what is accessible to certain types of users. |
| Does Integration Cloud Service support synchronizing with an external time source? | All hosts within the solution are synchronized to the same time source. |
| Does Integration Cloud Service provide strong password options such as complexity, history, aging, account lockout. | OCI IAM provides robust password policy management functionality. When a user creates a password, OCI IAM validates the password against the password policies. More information about password policies is available at
|
