Prevent unauthorized access to data by managing network security policy separately from the underlying network architecture with Oracle Cloud Infrastructure (OCI) Zero Trust Packet Routing—generally available soon. Using an easily understood and intent-based policy language, security administrators can define specific access pathways for data. Traffic that is not explicitly allowed by policy cannot travel the network, improving security while simplifying the work of security, network, and audit teams.
OCI Zero Trust Packet Routing enables organizations to set security attributes on resources and write natural language policies that limit network traffic based on the resources and data services accessed. This effort is based on the 2023 initiative to develop a new open standard for Zero Trust Packet Routing (ZPR) with Applied Invention and other organizations. With ZPR, organizations can protect themselves from one of the most common causes of compromise—network misconfigurations. OCI is the first cloud provider to implement Zero Trust Packet Routing into its platform.
OCI ZPR improves traditional data security by restricting the potential paths for data exfiltration, even for authorized users, minimizing the attack surface area.
Databases with guessable credentials can be breached in minutes; just one line of ZPR policy can prevent a database from being exposed.
OCI ZPR helps make audit and compliance response easier by providing visibility via clear policies and security labels applied to data sources.
Watch Pradeep Vincent, Chief Technical Architect at OCI, explain how OCI Zero Trust Packet Routing architecture helps protect against data breaches.
“Traditional security tools try to protect sensitive data by blocking access, but history shows it is almost impossible to anticipate all the ways a hacker might attempt to infiltrate a network. With Zero Trust Packet Routing, the network does not allow any data to move through the network without explicit permission. Organizations using Oracle Cloud Infrastructure can now take advantage of this to better safeguard their data. Oracle is the first to offer this new level of security, and we’re hopeful other cloud platforms will follow.”
Danny Hillis
Co-founder, Applied Invention
“As public clouds emerged, enterprises had the opportunity to redefine how they address network security. However, they carried over most of the same concepts that tightly coupled security and network configuration. A single mistake in a highly complex cloud network can result in exposure. OCI Zero Trust Packet Routing enables organizations to decouple network configuration from security, helping to eliminate the effects of human network configuration errors. This new standard driven by Oracle flips this all too often checkbox item on its head to provide an innovative solution for organizations that simplifies compliance efforts, reduces the burden on security teams, and ultimately strengthens security.”
Philip Bues
Senior Research Manager, Cloud Security, IDC
Build, test, and deploy applications on Oracle Cloud—for free.
Interested in learning more about Oracle Cloud Infrastructure? Let one of our experts help.