1 Security Overview

ECP is a SaaS solution which is built for OCI using Oracle technologies.

As the ECP is a SaaS offering from Oracle, it is the responsibility of the Oracle (ECP GBU) to secure the ECP application and protect resources from various internal and external security threats. Customer data both in transit and at rest are always encrypted.

ECP uses the OCI Security service Cloud Guard to detect and prevent the cloud security threats using preconfigured policy. The OCI Web Application Firewall service (WAF) is configured to protect the ECP application from attacks such as L7 DDos attack, XSS and Cross-Site forgery attacks. OCI patch management service is used to automatically apply the security patches to host Operating System. Oracle Vault service is used for storing application secrets and credentials.

ECP uses the Oracle Identity Cloud Service (IDCS) for Identity management, User Authentication and Authorization. The security controls & configurations are implemented and managed by the ECP SaaS Operation team.