Thursday, June 09, 2011

A Preview of The Oracle Database Firewall

Last year I went to Oracle HQ at The Garden Mid Valley City for a presentation of Oracle Enterprise Single Sign On (ESSO). This year or specifically 18th of May last month, I attended an Oracle DBA Round Table – Database Firewall.

Same as last time, the presentation was done at Langkawi Room located at level 23, The Garden North Tower, Mid Valley City.


The Training Room


The Presenter was Niel Pandya which I believe is from the UK.


The Oracle presenter/trainer of the day



How is Data Compromised?



Why is understanding SQL critical?



Attendees present



Oracle Database Firewall Basic Components



Diagram of Basic Data Center Environment


Now comes the best part, FOOD! The food was prepared by Restoran Rebung (Chef Ismail). Chef Ismail is one of the prominent chef in Malaysia so of course his food is superb.


Lunch! One of the best tasting training lunch I've ever tasted


After lunch was over, it's time for some action.


The Hands-on training server's IP addresses strip sheet


Each participant was given this strip sheet with 3 IP addresses. The IP addresses was unique for each participants so no participant was connecting to the same server.


Trying to set up server connection on my laptop


At first, I was astounded by how the training was setup. Upon further investigation, I found out that the organizer used Amazon Web Services and setup more than (30 x 3) Amazon Elastic Compute Cloud (Amazon EC2) instance for each participants. Now this is new to me.


Instruction on The Hands-on training server's using the IP addresses strip sheet


After setting up the "virtual lab", its time to test the oracle Database Firewall setup.


Applying the Swingbench Application


If you are accustomed to dashboard style web-based console, you'll definitely have no problem exploring all its features.


A view of the Oracle Database Firewall Administration Console


The class ended at 3.30pm, the instructor told us that the server can still be accessed up until 6pm before it'll be shut down. Unfortunately when I got home, the server were inaccessible anymore.


Class ended


This class has been an eye opener for me since I like trying out stuff instead of just listening or reading it. I believe this type of presentation and hands-on training is more meaningful rather than just a talk. In my opinion, the Oracle Database Firewall product is useful in an environment where things has been out of control where developers and system administrator experienced some sort of a battle cracking down each other. Basically it depends on which industry the product is applied in. If it involves financial, this product will become top of the line security add-on. However, with the alarming numbers of breaches, malware, spyware, SQL injections and network security ignorance by the IT people themselves, prevention is better than cure right?


Posing in front of Oracle HQ Malaysia


If you need more information regarding Oracle Database Firewall, here's two links you can download the product information: