7 Frequently Asked Questions
This section includes a number of specific questions related to security that are frequently asked by prospects, customers and implementers.
| Question | Answer |
|---|---|
|
Does Integration Cloud Service support data encryption? |
Yes. Sensitive Personal Data is stored in encrypted tablespace. All data is encrypted in transit, Integration Cloud Service uses TLS for secure transport of data. |
|
Does Integration Cloud Service provide network segregation? |
Yes. The Oracle Cloud network is isolated from the Oracle corporate network. Customer instances are separated down to the VLAN level. |
|
Does Integration Cloud Service provide secure backups? |
Yes. Backup is a standard process for the Integration Cloud Service. Database and application servers backed up both incrementally (daily) and fully (weekly). Backups are stored for at least 60 days. |
|
Does Integration Cloud Service provide centralized logging? |
Yes. All application and infrastructure logs are forwarded to a centralized Security Information and Event Management system. |
|
Does Integration Cloud Service provide antivirus? |
Yes. All files uploaded into Integration Cloud Service are scanned by antivirus and anti-malware software. All hosts in the cloud service are regularly patched with the latest critical patch updates. |
|
Does Integration Cloud Service provide strong authentication options such as 2-factor, one-time Password? |
Multi-Factor Authentication is an option if a customer chooses to license the Standard Tier of OCI IAM. |
|
Does Integration Cloud Service include a configurable warning banner which is presented upon login? |
Terms of Use is an option if a customer chooses to license the Standard Tier of OCI IAM. It presents disclaimers and acceptable use policies to users. |
|
Does Integration Cloud Service implement access lists to secure each tier of the solution? |
Yes. Communication between tiers within Integration Cloud Service is limited by subnet ingress security lists. |
|
Does Integration Cloud Service include and support the capability to change default account passwords? |
All user password management occurs in OCI IAM. |
|
Does Integration Cloud Service support Roles with defined access levels? |
Yes. Oracle Retail Enterprise roles span Oracle Retail applications. Within Integration Cloud Service, privileges and duties can be assigned to roles to define what is accessible to certain types of users. |
|
Does Integration Cloud Service support synchronizing with an external time source? |
All hosts within the solution are synchronized to the same time source. |
|
Does Integration Cloud Service provide strong password options such as complexity, history, aging, account lockout. |
OCI IAM provides robust password policy management functionality. When a user creates a password, OCI IAM validates the password against the password policies. More information about password policies is available at |