Security and Compliance


Oracle Solaris 11 is a complete, integrated, and open platform engineered for secure and compliant enterprise cloud environments. Oracle Solaris combines the power of industry standard security features, unique security and anti-malware capabilities, and compliance management tools for low risk application deployments and cloud infrastructure. Oracle hardware systems and software in silicon provide the anti-malware trust anchors, accelerate cryptography, and help protect from memory attacks with ADI, NX, and SMEP.

Oracle Solaris:
  • Provides a more secure enterprise cloud
  • Provides a more secure application lifecycle
  • Provides a more compliance infrastructure
  • Provides a more secure application
  • Provides a more secure infrastructure
  • Is an assured and tested low risk platform

Data Sheets

 Oracle Solaris 11 - Engineered for Public Sector
 Oracle Solaris 11 - Engineered for Security Designed for Compliance

How-To Guides and White Papers

 How to Automate Compliance Assessments in Oracle Solaris 11
 Oracle Solaris 11 and PCI DSS, Coalfire Systems, Inc White Paper
 How to Apply Read-Only Protection with Oracle Solaris Immutable Zones
 Oracle Solaris Audit Quick Start
 Oracle Solaris 11 Security: What's New For Developers
 What is ADI?

Product Documentation

 Oracle Solaris 11 Security Guidelines
 Oracle Solaris 11 Compliance Guide
 Security Services
 Developer's Guide to Oracle Solaris 11 Security
 Oracle Software Security Assurance
 Oracle Critical Patch Updates and Security Alerts


 Secure, Efficient Customer Multi-tenancy with Oracle Solaris
 The Fine-Grained Security Controls in Oracle Solaris
 Security Capabilities and Design in Oracle Solaris 11

Blog Entries

 Verified Boot - Part 1 - Dan X
 Verified Boot - Part 2 - Dan X
 Oracle Solaris 11 Compliance Framework - Darren Moffat
 CVE metadata in Oracle Solaris Packages - Darren Moffat
 Qualified User Attributes - Glenn Faden
 Authenticated Rights Profiles - Glenn Faden
 NFS Reserved Port Properties - Casper Dik
 Immutable Global Zone - Casper Dik
 Security in Silicon (ADI) - Angelo
 Application Containment via Sandboxing - Glenn Faden
 Oracle Solaris Extended Policy and MySQL - Glenn Faden