Putting Data Security
and Protection First

Automated, always-on,
architected-in security.

Oracle Cloud
Infrastructure Security

Oracle Cloud Infrastructure is built from the ground up to meet the needs of mission-critical applications while delivering modern development controls.

Oracle Cloud Infrastructure is the only cloud platform built to run Oracle Autonomous Database, the industry’s first and only self-driving database. But how does Oracle keep customers, their data, and their cloud-based workloads and innovation secure?



With Oracle Autonomous Linux and OS Management in Oracle Cloud Infrastructure, OS security patches are automatically applied. This helps reduce complexity and human error, while delivering increased cost savings, security, and availability.

No human interaction is needed, helping improve IT staff productivity, security, and availability. Automate provisioning, scaling, and monitoring and deliver 30 to 50% TCO savings over five years compared to other on-premises and cloud platforms.



Oracle Cloud Infrastructure uses a ubiquitous encryption program to encrypt all data, in all places,
at all times. For customer tenant data, it uses encryption both at rest and in transit.

In fact, our Block Volumes and Object Storage services enable at-rest data encryption by default using the Advanced Encryption Standard (AES) algorithm with 256-bit encryption. In-transit data is kept secure using Transport Layer Security (TLS) 1.2 or later.

Customers also benefit from a tiered defense strategy and highly secure operations that extend from the physical hardware layer in Oracle data centers to the web layer. Many of the protections and controls available in Oracle Cloud also work with third-party clouds and on-premises solutions to help keep modern enterprise workloads and data secure—wherever they’re hosted.


Customer isolation

Oracle Cloud Infrastructure is built around our security-first principles. Its architecture helps reduce risk from advanced threats and isolates tenant data to ensure data privacy and security.

This means customers benefit from:

  • Isolated network virtualization that reduces the risk of hypervisor-based attacks
  • Customer tenancy isolation that limits the risk of threat proliferation
  • Hardware-based root of trust that ensures each server is provisioned with clean firmware
  • Network segmentation that isolates services to ensure access is controlled, monitored, and driven by strict policies

Oracle Cloud Infrastructure in financial services.

Security-first Oracle Cloud Infrastructure is ideal for financial services firms that are tired of managing and updating traditional infrastructure. Updating legacy platforms can be slow and see rising upgrade costs over time—tying up valuable resources that could be better used to deliver new innovations and compete against challenger banks and other digitally-savvy competitors like financial technology (fintech) startups.

By migrating infrastructure to the public cloud, firms can reduce infrastructure complexity and improve security while allowing IT staff to refocus their talent on higher-value tasks such as responding to verified security risks or innovating around the customer.

Because Oracle Cloud Infrastructure can run security-sensitive workloads with automated security monitoring, firms can remain compliant with strict industry regulations while improving data visibility and application security, and getting ahead of digitally-savvy competitors.