Vulnerability Monitoring
Reduce risk from vulnerabilities in your OCI compute instances, OCI Registry (OCIR) stored container images, and DevOps Java builds with Oracle Cloud Infrastructure (OCI) vulnerability monitoring solutions. OCI’s solutions give you deeper and wider vulnerability coverage and integrate with existing security tools to speed up remediation and help you stay ahead of vulnerability issues.
Where can OCI reduce your vulnerability risk level?
-
Cloud workloads
Software applications are clean when they’re built and deployed, but it can be challenging to keep patching up to date. Osterman research recently found that 85% of commercial applications have “critical” vulnerabilities. OCI vulnerability monitoring solutions can help you know as soon as possible that your software has a new Common Vulnerability and Exposure (CVE) threat.
-
Compute instances
In most organizations, there are virtual machines (VMs) with a standard corporate desktop image that employees use to perform mission-critical work. These workers just want to be able to log in and out quickly for their required tasks. You need a centralized place in your cloud compute infrastructure to find issues on these VMs and initiate software updates to address those vulnerabilities with a click of a button.
-
Build time: applications
Developers want to know that they’re using the newest and safest Java archive (JAR) files when they build and test their applications. They don’t want to waste testing time on older JAR files only to discover vulnerabilities in production that force them to rebuild and restart their testing. Finding common vulnerabilities by catching them inside the build pipeline helps save your company time and money.
Cloud vulnerability monitoring solutions
OCI Vulnerability Scanning Service
Receive alerts about unpatched vulnerabilities and open ports on cloud instances as well as vulnerabilities inside container images stored with Oracle Cloud Infrastructure Container Registry by using Oracle Cloud Infrastructure Vulnerability Scanning Service.
OCI Operating System Management
Manage and monitor updates and patches for operating system environments in Oracle Cloud instances, including instances managed by the Oracle Autonomous Linux OS management service. Oracle Cloud Infrastructure OS Management also provides options for discovering and monitoring resources in cloud instances.
Application Dependency Management
Detect security vulnerabilities in cloud application dependencies. Set the configuration in the "managed build" stage of a DevOps pipeline to break the build when risky vulnerabilities are found inside the build materials.
Identifying vulnerabilities in cloud container images
Jim Smith, Senior Product Manager, Oracle
Customers need security that is easier to implement and maintain—this is at the core of Oracle’s approach to cloud security. OCI Vulnerability Scanning Service has offered container image scanning via the OCI Container Registry console since its launch in March 2021. Customers can now choose to turn on container image scanning inside OCI Vulnerability Scanning Service for every repository in a compartment by checking a single box.
Read the complete postVulnerability Monitoring resources
-
Vulnerability Monitoring tools
-
Learn more about Oracle Cloud