You are on page 1of 56

Database Technology powered by Oracle now with 12C

Webinar Presenter:
Vishwanathan Vaidyanathan
Senior Technical Lead, smartShift Technologies

www.smartShiftTech.com
Agenda

1. Introduction smartShift Technologies

2. Migration

3. Database Security

4. Database High Availability & Disaster Recovery

5. Oracle Database 12c New Features

6. Q & A
Introduction
1 smartShift Technologies

www.smartShiftTech.com
About smartShift Technologies

Founded in 1992

Global software and services company

500+ employees in Germany, India and USA

More than 19 years experience in the


IT-Modernization market

Patented and proven automation


software and methodologies

Software and services for migration and


modernization of complex systems

smartShift value: Much Faster, Higher Quality,


Reduced Risk & Lower Cost!

2013 smartShift Technologies. All rights reserved 11/26/2013 4


Selected Customers

2013 smartShift Technologies. All rights reserved 11/26/2013 5


Migration
2

www.smartShiftTech.com
WHAT IS MIGRATION (UPGRADATION)

Upgradation

Collection of process to change the version of Database


from existing version to Higher Version / Release on same
Operating System on existing Hardware is called
Upgradation

Migration

Changing the underlying Operating System and/or


Hardware
Moving the database from one RDBMS to any other
RDBMS is called Migration (ex. From MySQL to Oracle)
Moving the database from non-ASM (Oracle database files)
to ASM (Automatic Storage Management) File System or
Standalone database to RAC (Real Application Cluster)
database or vice versa

2013 smartShift Technologies. All rights reserved 11/26/2013 7


NEED OF MIGRATION

New & Enhanced


Features and HA

Bug Fixtures,
Handle more
OEM Vendor
Load & User
Support
base

Database
Migration

Enhanced Data
Handle Bigger Security
DB size &
Storage Data Encryption,
Capacity Database Vault and
Audit Vault

DB
Reorganization,
Easier
Management

2013 smartShift Technologies. All rights reserved 11/26/2013 8


MIGRATION DEPENDENCIES

Application
Compatibility

Backup &
Contingency
plans prior to
Migration

2013 smartShift Technologies. All rights reserved 11/26/2013 9


MIGRATION METHODS

Upgradation will be done on the same server with the


same existing Operating System
DBUA Upgrading only Oracle Software and data dictionary in
the database
Minimize the Database server downtime

Upgradation will be done using scripts. Same as


MANUAL DBUA but will be executed using SQL command
prompt
METHOD Done on same DB server & same O/S
Minimizes the downtime.
Upgradation will be done using Logical backups (Data
pump or EXP/IMP). Upgradation can be done to higher
version on same DB server or different server
EXP / IMP Requires more Downtime time as we need to take
backup on existing DB server and restore it on target
DB server

Upgrading using RMAN backups


RMAN Cloning database from Production to Staging, Testing
and Development activities

2013 smartShift Technologies. All rights reserved 11/26/2013 10


11g NEW FEATURES

The selected new features in 11g / 12c that you can benefit after up-gradation:
Database Replay
o Database Replay is the new tool that captures SQL statements and lets you
replay them.
Partitioning
o Referential, Internal, and Virtual Column partitioning; new sub-partitioning
options; and more.
Schema Management
o Add columns with a default value easily and explore invisible indexes, virtual
columns, and read only tables.
Patching and Upgrades, RAC One Node, and Clusterware
o Enables a single name (SCAN) for the cluster, enable HA for a single-instance
database, place OCR and voting disks on ASM, and more (in Release 2 only).
PL/SQL Performance
o Explore in-lining of code, "real" native compilation, PLS timer, use of simple
integer, and more.

2013 smartShift Technologies. All rights reserved 11/26/2013 11


11g NEW FEATURES

Security
o Tablespace Encryption, case-sensitive passwords, data masking, and other
features.
Caching and Pooling
o SQL Result Cache, PL/SQL Function Cache, and Database Resident
Connection Pooling.
SecureFiles
o Next-generation LOBs: LOB encryption, compression, de-duplication, and
asynchronicity.
Compression
o Support for data compression, 11g takes the concept to a new level with
Advanced and Hybrid Columnar Compression.
Backup and Recovery
o Explore Data Recovery Advisor, do parallel backup of the same file, create and
manage virtual catalogs, and undrop tablespaces.
Transaction Management
o Flashback Data Archive and explore Enterprise Manager's LogMiner interface.

2013 smartShift Technologies. All rights reserved 11/26/2013 12


11g NEW FEATURES

DataGuard (Active)
o The Oracle 11g Active DataGuard allows a physical standby database to be
open for read only access. Instead of having an idle physical standby database
for only disaster recovery (DR) it can be used for reporting and backups while
continuously applying the redologs from Primary database.
RAC (Real Application Cluster)
o Dramatic improvements in the manageability of RAC. This feature enables
users to deploy a database or databases across a cluster of servers, which act
as a single logical environment, with the servers transparently sharing storage.
If one node fails, the others carry on and the workload of the failed node is
distributed across the others nodes.
End-to-End Compression
The Advanced Compression option enables the data to be transparently
compressed on disk, "in motion, and in memory. This compression feature not
only saves space on disk and in memory but also make the database run
faster.
It can reduces disk and memory space usage as much as 75%. OLTP Table
Compression, reduces the associated compression overhead of write
operations, making it suitable for transactional or OLTP environments as well.

2013 smartShift Technologies. All rights reserved 11/26/2013 13


UPGRADE PATHS
The following are the Upgrade Paths from lower versions to Oracle 11g

Destination
Source Database Upgrade Path
Database

1 7.3.3 (or lower) => 7.3.4.0 => 9.2.0.8 => 11.2.x

2 8.0.5 (or lower) => 8.0.6.x => 9.2.0.8 => 11.2.x

3 8.1.7 (or lower) => 8.1.7.4 => 10.2.0.4 => 11.2.x

4 9.0.1.3 (or lower) => 9.0.1.4 => 10.2.0.4 => 11.2.x

5 9.2.0.7 (or lower) => 9.2.0.8 => 11.2.x

2013 smartShift Technologies. All rights reserved 11/26/2013 14


BUSINESS BENEFITS OF MIGRATION

Faster Performance
New & Enhanced Features
OEM Vendor Support
High Availability / Maximum Availability
Enhanced Security
Reduced Cost in terms of -
o Hardware
o Storage
o Software
o Man Power (DBA Resources)

2013 smartShift Technologies. All rights reserved 11/26/2013 15


3 Database Security

www.smartShiftTech.com
ESSENTIALS OF DATABASE SECURITY

What to Secure
The Confidential and Sensitive Information (data) is always needs
to be secured. The information, ranging from trade secrets to
financial and privacy data has become the target of sophisticated
inside / outside attacks.

Why to Secure
The safe-guard of critical & confidential information is always
challenging due to the following threats-
Eavesdropping and Data Theft
Data Tampering
Falsifying critical information
Password related Threats
Data corruption due to Hardware Failures / Human mistakes
Data Loss due to Natural Calamities like Fire, Building collapse,
Earthquake

2013 smartShift Technologies. All rights reserved 11/26/2013 17


ESSENTIALS OF DATABASE SECURITY

How to Secure

The organizations have to deploy with multi layered security


system which include firewall, intrusion detection and anti-spam
technologies. Protecting data now requires a defense-in-depth,
inside-out security strategy at application & database level.
By adopting right Security Strategy, organizations can better
safeguard their data, address statutory regulations and securely,
achieve new business initiatives such as data consolidation
(centralizing) and cloud computing.

2013 smartShift Technologies. All rights reserved 11/26/2013 18


SECURITY LAYERS

2013 smartShift Technologies. All rights reserved 11/26/2013 19


SECURITY LAYERS

Database Level Security can be implemented by using


Password Management
Database Level Auditing & Data Masking
Roles & Privileges
Data Encryption

Authentication
Application Level Application Level Roles & Privileges
Connection & Data Access Control

Hardware, O/S and Server Authentication


Operating System Restrict to access OS & Devices
Anti-virus and Spam Protection
& Storage Level

Network Authentication
Network / Internet Firewall
Level Internet Policies

2013 smartShift Technologies. All rights reserved 11/26/2013 20


SECURITY LEVELS

Network,
Hardware &
Operating
System Level
Security

Application Data
Level Redaction /
Authentication Masking

Secured Data

Data Access Data


Control, Encryption
Monitoring &
Intrusion (Database &
Detection Backup)
Fault
Tolerance &
Disaster
Recovery
Sites

2013 smartShift Technologies. All rights reserved 11/26/2013 21


HOW TO WIN BATTLE OF BREACH

Step 3:
Prepare your
response to the
inevitable: a
sophisticated
attack

Step 2:
Protect your
Organization
with a
proactive
security plan
Step 1.
Prioritize your
business
objectives and
set your risk
tolerance

2013 smartShift Technologies. All rights reserved 11/26/2013 22


ORACLE SECURITY FEATURES

Oracle is providing various features on Securing the valuable Data. While creating a
database, Database Configuration Assistant (DBCA) is automatically create a more
secured Oracle Database.
The following are the few Oracle Database Security Features:
Oracle Database Vault
o Oracle Database Vault proactively protects application data from being
accessed by privileged database users (Access Control and Analysis).
o Restrict adhoc access to application data by preventing application bypass
o Certified default policies for Oracle E-Business Suite; Oracles PeopleSoft and
Siebel CRM; and SAP applications

Database auditing
o Database monitors and records activity that occurs in the database.
o Auditing has been enhanced and provides highly customizable auditing that can
be fine tuned to specific security requirements.
o Oracle introduced the Fine Grained Auditing (FGA) feature, The Secure
Sockets Layer (SSL) and Kerberos strong authentication methods to
authenticate users who have the SYSDBA and SYSOPER Privileges.

2013 smartShift Technologies. All rights reserved 11/26/2013 23


ORACLE SECURITY FEATURES

Virtual Private Database (VPD)


o Database access on the row and column level using Virtual Private Database.
A Virtual Private Database policy dynamically imbeds a WHERE predicate into
SQL statements the user issues.

Password Protected & Case sensitive Password


o Easy ability to find default passwords
o Password complexity verification
o Stronger password hashing algorithm

SYSDBA and SYSOPER Strong Authentication


o The Secure Sockets Layer (SSL) and Kerberos strong authentication methods
to authenticate users who have the SYSDBA and SYSOPER Privileges

SYSASM Privilege for Automatic Storage Management


o The SYSASM system privilege has been added to Oracle Database 11g R1 to
be used exclusively to administer Automatic Storage Management (ASM).

2013 smartShift Technologies. All rights reserved 11/26/2013 24


ORACLE SECURITY FEATURES

Encryption
o Disguise data on the network to prevent unauthorized access to that data.

Encryption Enhancements
o Intelligent LOB Compression, Deduplication, and Encryption with SecureFiles
o Compressed and Encrypted Dump File Sets
o Transparent Data Encryption with Hardware Security Module Integration
o Transparent Tablespace Encryption

Fine-Grained Access Control on Network Services on the Database


o Oracle Database provides a set of PL/SQL utility packages, such as UTL_TCP,
UTL_SMTP, UTL_MAIL, UTL_HTTP, and UTL_INADDR, that are designed to
enable database users to access network services on the database.

Auditing database activities


o Audit the database activities such as auditing all SQL statements, SQL
privileges, schema objects, and network activity. Or you can audit in a granular
manner, such as when the IP addresses from outside the corporate network is
being used.

2013 smartShift Technologies. All rights reserved 11/26/2013 25


ORACLE SECURITY FEATURES

Compressed and Encrypted Dump File Sets


o Oracle Data Pump to compress and encrypt an entire dump file set. You can
optionally compress and encrypt the data, metadata, or complete dump file set
during an Oracle Data Pump export.

User accounts.
o When you create user accounts, you can secure them in a variety of ways. And
also create password profiles to better secure password policies for your site.

Authentication methods
o Oracle Database provides several ways to configure authentication for users
and database administrators. For example, authenticate users on the database
level, from the operating system, and on the network.

Privileges and roles


o Use appropriate privileges and roles to restrict users to access data.

2013 smartShift Technologies. All rights reserved 11/26/2013 27


BUSINESS BENEFITS OF SECURITY

Secured Sensitive & Confidential Data


Reduced Business Risks
Un-interrupted Business
Data Protection from -
Malfunctioning
Unauthorized Access/Users
Natural Calamities like fire, earth-quake

2013 smartShift Technologies. All rights reserved 11/26/2013 28


Database High

4 Availability & Disaster


Recovery

www.smartShiftTech.com
ESSENTIALS OF HA & DR

Why need of HA & DR


Business Enterprises always looking to gain competitive
advantages, reduce operational costs, enhance
communication with customers and increase management
insight into their business processes.
As the use of IT enabled services becomes prevalent,
modern enterprises become increasingly more and more
dependent on their IT infrastructure and its continuous
availability.
Application downtime and unavailability of data(base)
directly translate into loss of productivity and revenue, also
resulted in dissatisfied customers and tarnished corporate
image.
Need to protect Data from loss due to Hardware Failures /
Human mistakes or natural calamities like Fire,
Earthquake.

2013 smartShift Technologies. All rights reserved 11/26/2013 30


ESSENTIALS OF HA & DR

How to achieve HA

The traditional approach to building a High Availability (HA)


infrastructure and Disaster Recovery (DR) solutions has a
challenge due to complex setup, skilled resources and
expensive hardware from various vendors, technological
limitations and administrative complexities.
Oracle addresses these challenges by providing a
comprehensive solutions on High Availability with reliable
pre-integrated technology which can be implemented at a
minimal cost and skilled resources.

2013 smartShift Technologies. All rights reserved 11/26/2013 31


HA CONFIGURATION LEVELS

Database Level HA can be implemented using


Real Application Cluster (RAC)
Data Guard
Database Level Golden Gate
Oracle Streams / Replication
RMAN, Data Pump (Backups)

Hardware / OS Operating System Level Replica


Fail-over Cluster
Server Level Third party Replication Solutions

Storage Level Replica


Storage Level ASM (Automatic Storage Management)

Data Center Establishing the Disaster Recovery (DR) sites at


geographically distant place(s)
Level

2013 smartShift Technologies. All rights reserved 11/26/2013 32


HA CONFIGURATION TYPES

DataGuard
(Standby
Database)

RAC
GoldenGate ( Real Application
Cluster )

Oracle
Database
HA & DR
Solutions
Storage
Level Streams /
Replication Replications
/ Mirroring

Fail-over
Cluster

2013 smartShift Technologies. All rights reserved 11/26/2013 33


HA & DR FEATURES

The following are the technology options to avail the HA &


DR at Oracle Database level:

Real Application Cluster ( RAC )


DataGuard
GoldenGate
Oracle FailSafe / Cluster Fail-over
Automatic Storage Management ( ASM )

2013 smartShift Technologies. All rights reserved 11/26/2013 34


HA & DR FEATURES

Real Application Cluster (RAC)

Oracle RAC is a cluster database with a shared cache architecture to provide


highly scalable and available database solutions with following features:
Scalability
RAC allows customers to take advantage of lower cost commodity hardware
and provide a horizontal scalable computing environment when their business
needs by adding / removing nodes.
Maximum Availability Architecture (MAA)
Oracles Maximum Availability Architecture (MAA) which ensures the highest
availability for applications.
Connection Load-balancing across the Nodes
Net Services provide connection load balancing for database connections.
Client-side load balancing, which balances connection requests across the
RAC nodes.

2013 smartShift Technologies. All rights reserved 11/26/2013 35


HA & DR FEATURES

Real Application Cluster (RAC)

Rolling Release Upgrade


RAC supports rolling upgrades which provides the ability to upgrade
Clusterware without taking the entire cluster down and therefore enables 24x7
operation of business.
Rolling Patch Application
Supports the application of patches to the nodes of RAC database in a rolling
fashion with no downtime. Patches are applied one node at a time while the
other nodes in the Oracle RAC system are up and operational.
File Storage Option
RAC Supports following file systems:
Automatic Storage Management (ASM)
OCFS2 (for Linux) and Oracle Cluster File System (OCFS) (for Windows)
A network file system
Raw devices

2013 smartShift Technologies. All rights reserved 11/26/2013 36


HA & DR FEATURES

RAC - Block Diagram

2013 smartShift Technologies. All rights reserved 11/26/2013 37


HA & DR FEATURES

DataGuard (DG)

DataGuard is the data protection and availability solution for Oracle


Databases.
DG configuration enables Standby Database that is exact replica of
Primary Database by shipping archives logs automatically from
Primary database & applying at Standby database.
DG provides the management, monitoring, and automation
software to create and maintain one or more synchronized standby
databases that protect data from failures, disasters, errors and
corruptions.
Users can easily Fail-over to Standby site when Primary site goes
down with zero or minimal data loss.

2013 smartShift Technologies. All rights reserved 11/26/2013 38


HA & DR FEATURES

DataGuard (Return On Investment)

The Active DataGuard (real time replication) enables Standby


databases open in read-only while being synchronized with the
primary database.
This will reduces the burden of heavy load on Primary site by running,
reports & backups at Standby site.
Snapshot Standby enables a standby database to be open read-
write for testing. A Snapshot Standby continues to receive, but not
apply, updates generated by the primary. When testing is
complete, the Snapshot Standby is converted back into a
synchronized physical standby.
This feature avoids the additional hardware resource required for
testing the Application.

2013 smartShift Technologies. All rights reserved 11/26/2013 39


HA & DR FEATURES

DataGuard - Block Diagram

2013 smartShift Technologies. All rights reserved 11/26/2013 40


HA & DR FEATURES

GoldenGate

Oracle GoldenGate is a comprehensive software package for real-


time data integration and faster replication in heterogeneous IT
environments.
The product set enables high availability solutions, real-time data
integration, transactional change data capture, data replication,
transformations and verification between operational and analytical
enterprise systems.
Oracle GoldenGate 12c gives high performance with simplified
configuration and management, tighter integration with Oracle
Database, support for cloud environments, expanded
heterogeneity, and enhanced security.
Transaction integrity: Data completeness and accuracy is ensured
as it is moved between systems.

2013 smartShift Technologies. All rights reserved 11/26/2013 41


HA & DR FEATURES

GoldenGate Features

Zero-downtime operations: Enable uninterrupted business


operations during system upgrade, migration, and maintenance
activities.
Disaster recovery and data protection: Create and maintain an
immediate failover with up-to-the-minute data to minimize recovery
time for mission-critical systems-deploy with Oracle Database
across database versions or operating systems or in non-Oracle
environments.
Data distribution: Synchronize data for distributed applications in
real time across geographies for reliable access to timely data.
Query offloading: Ensure high performance for production
systems while still supporting necessary read-only activities by
replicating data between heterogeneous sources and targets

2013 smartShift Technologies. All rights reserved 11/26/2013 42


HA & DR FEATURES

GoldenGate - Block Diagram

2013 smartShift Technologies. All rights reserved 11/26/2013 43


HA & DR FEATURES

GoldenGate Replication Types

2013 smartShift Technologies. All rights reserved 11/26/2013 44


HA & DR FEATURES

Oracle Fail-safe using MSCS / Fail-over cluster

Oracle Fail Safe is a software that works with Microsoft Cluster


Server (MSCS) to provide high availability benefit on Microsoft
clusters.
A cluster is a configuration of two or more MS Windows systems
that makes them appear to network users as a single, highly
available system. Each system in a cluster is referred to as a
cluster node.
When a cluster node fails, the cluster software moves its workload
to the surviving node (failover) based on the set parameters.
For non-Windows systems, the third party cluster software can be
used to configure Fail-safe.

2013 smartShift Technologies. All rights reserved 11/26/2013 45


HA & DR FEATURES

Oracle Fail-safe / Fail-over cluster - Block Diagram

2013 smartShift Technologies. All rights reserved 11/26/2013 46


HA & DR FEATURES

Automatic Storage Management (ASM)


Oracle ASM is a volume manager and a file system for Oracle
database files that supports both single-instance Database as well
as RAC configurations wit no additional cost.
ASM is Oracle's recommended storage management solution that
provides an alternative to conventional volume managers, file
systems, and raw devices. This avoids the requirement of third
party software.
ASM provides automatic load balancing over all the available
disks, thus reducing hot spots in the file system.
ASM prevents fragmentation of disks, so you don't need to
manually relocate data to tune I/O performance
You can add / remove disks on fly, ASM automatically performs
online disk reorganization when you add or remove storage.
ASM storage system can store all types of database files & ACFS.
ASM provides stripping and mirroring.
2013 smartShift Technologies. All rights reserved 11/26/2013 47
BUSINESS BENEFITS OF HA & DR FEATURES

Business Continuity Solution


Maximum Protection & Availability of Data
Reduced Business Risks
Faster Response, Satisfied clients
Bifurcates Production load to DR site
Minimizes Planned & Unplanned Outages
Data Protection from -
Users Transaction Mistakes
Hardware / Disk Failures
Natural Calamities like Fire, Earthquake

2013 smartShift Technologies. All rights reserved 11/26/2013 48


Oracle Database 12c
5 New Features

www.smartShiftTech.com
ORACLE 12c NEW FEATURES

The following are the few selected features of 12c:


Multitenant Architecture & Pluggable databases
Online migration of an active data file
Online table partition or sub-partition migration
Invisible columns
Multiple (duplicate) Indexes on the same column
DDL Logging
PL/SQL Unit Security
Execute SQL statement in RMAN
New backup user privilege
Table level recovery in RMAN
Restricting PGA size

2013 smartShift Technologies. All rights reserved 11/26/2013 50


ORACLE 12c NEW FEATURES

Multitenant Architecture & Pluggable databases (PDB)


Multiple Databases share a single instance of resources aiming for
different purposes on the same Server. This Oracle database which
is built on Multitenant foundation is called Container Database
(CDB), and each container (tenant) residing inside is called
Pluggable Database (PDB, Container).
Cost reduction in terms of Product licensing and Hardware
procurement as we require less number of processors and less
memory compare to a Non-CDB environment.
Easier database maintenance, PDBs can easily be moved or copied
locally or remotely across Physical machines in the network,
Upgrading Operating System, Upgrading or Patching Database itself
is a lot easier and "often" a one shot process, that greatly improves
the availability.
Performance tuning becomes a lot easier as all PDBs in a CDB
environment share same Hardware / Platform / Network resources
like CPUs / Memory / OS / Bandwidth etc., similar to tune one single
piece of SGA/PGA on one single instance rather tuning each SGA on
each physical machine.
2013 smartShift Technologies. All rights reserved 11/26/2013 51
ORACLE 12c NEW FEATURES
Online migration of an active data file
You can online rename or relocate an active data files.
Online table partition or sub-partition migration
Online migrate a table partition or sub-partition to a different tablespace.
Invisible columns
You can create invisible indexes and virtual columns to hide important
data/columns from being displayed in the generic queries.
Multiple (duplicate) Indexes on the same column
You can create multiple indexes either on the same column or set of columns.
DDL Logging
You can now log the DDL action into xml and log files. This will be very useful
to know when the drop or create command was executed and by who.
New backup user privilege
RMAN backup and recovery tasks specific privilege SYSBACKUP has been
introduced to execute backup and recovery commands
Execute SQL statement in RMAN
Execute SQL commands in RMAN prompt without the need of a SQL prefix.

2013 smartShift Technologies. All rights reserved 11/26/2013 52


ORACLE 12c NEW FEATURES
Row Level Compression
It provides the ability to specify ADO (Automatic Data Optimization) policies to
implement compression at the row level within each table in a database.
Segment-Level Compression
This feature provides the ability to specify ADO policies to implement
compression at the segment level within each table in a database.
In-Database Archiving
Allows users to set the archive state for individual rows. Rows that marked as
archived will not be visible unless the session is enabled to see archived data.
With In-Database Archiving, more data can be stored in databases for a
longer period without compromising application performance. It help to
improve query and backup performance.
Cascade for TRUNCATE
The TRUNCATE can be executed with CASCADE option which will also
delete the child records.
DDL logging
By using the ENABLE_DDL_LOGGING initiation parameter, we can now log
the DDL action into xml and log files to capture when the drop or create
command was executed and by whom.
2013 smartShift Technologies. All rights reserved 11/26/2013 53
6 Q&A

www.smartShiftTech.com
Questions & Answers

Do you have any questions?

Enter them in the chat pane!

2013 smartShift Technologies. All rights reserved 11/26/2013 55


Contact Us

Pounraj Karthikeyan
Senior Account Manager - Sales

+91-99-4002-5836

pkarthikeyan@smartshifttech.com
www.smartShiftTech.com

Request a Database Assessment Call

2013 smartShift Technologies. All rights reserved 11/26/2013 56


Thank you!

www.smartShiftTech.com