Oracle Linux—Security

Increasing DevOps Security

Turning DevOps into DevSecOps.

Read the business brief

Address
CVE
Save time and
lower TCO
Security and
compliance
Enhance protection of
critical applications
Security assessment
services
Customer
reviews

Sleep better at night with Oracle Linux security

In the face of increasing cybersecurity threats, Oracle Linux provides features that can help keep your systems secure and improve the speed and stability of your operations.

Keep your Oracle Linux systems current with automated security patching
Implement repeatable practices—in the data center and the cloud—using prebuilt or customized templates and lock down VMs
Close security gaps and help address compliance requirements

“We have to elevate the priority of security because no one wants to be on the front page. Because someone in the data center didn’t locate an instance of Apache Struts and fix it when the fix was available.”

—Larry Ellison, Oracle Executive Chairman and CTO

Address common vulnerabilities and exposures (CVE)

With security breaches on the rise, the ability to apply security fixes quickly is critical—especially as more businesses use container technology to build cloud-based applications. Oracle Ksplice technology enables you to improve the security of your infrastructure by applying security patches without disrupting operations or rebooting systems.

Security updates that save time and lower TCO

Security updates that do not require extra reboots are saving one Oracle Linux customer 500 hours every month—about US$325,000 a year.¹ Oracle Linux enables you to improve security while taking advantage of zero-downtime OS updates.

¹ John Webster, Senior Partner and Analyst, Evaluator Group, “Migrating to Oracle Linux—an Economic Value Analysis,” October, 2015.

Security and compliance

Many organizations are required to meet stringent compliance requirements for the protection of their systems.

Oracle Linux Release 7 has received both a Common Criteria (CC) Certification which was performed against the National Information Assurance Partnership (NIAP) General-Purpose Operating System Protection Profile (OSPP) v4.1 as well as a FIPS 140-2 validation of its cryptographic modules. Oracle Linux is currently one of only two operating systems—and the only Linux distribution—on the NIAP Product Compliant List.

Enhance protection of critical applications

Oracle VM with Oracle Real Application Clusters (RAC) helps create a virtualized data center for highly available applications.

Security assessment services

Oracle works with you to help close security gaps and reduce the attack surface of your Oracle Linux and virtualization infrastructure. Our experts can help you configure your Oracle Linux and virtualization infrastructure with current security patches and implement ongoing automated patching methodologies. They can also help you configure your systems following repeatable industry practices. With a better security stance, you can be more confident going into your next security audit. Contact us for more information.

Kristl, Seibt & Co GmbH Has Zero Downtime and Reduces Cost with Oracle Linux

“Ksplice reduces our time and cost of patching significantly. As we patch our systems with zero downtime, we don’t need to align with customers and test system availability. Oracle Linux offers an excellent price/performance ratio and helps us to have best possible alignment between database and operating system.”

—Manfred Konrad, Software Developer, Kristl, Seibt & Co GmbH

Read the story

NTT Data Intellilink Optimizes Performance and Uptime with Oracle Linux

“ At NTT Data Intellilink, my team manages extremely large, mission-critical systems. We switched to Oracle Linux from Red Hat Enterprise Linux because of Oracle's flexible, comprehensive support contracts, live patching with Ksplice, optimizations for Oracle Database, and the single-vendor support for the full stack. As a result, our systems now run with optimal performance, downtime is no longer unplanned, and our costs have been reduced by 50 percent.”