Scribd Logo
Upload

Welcome to Scribd!

  • OSC With Blue Coat PDF

    Uploaded by

    Mario Felipe Arias Gomez
    21 views34 pages

    Original Title

    OSC with Blue Coat.pdf

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    21 views34 pages

    OSC With Blue Coat PDF

    Uploaded by

    Mario Felipe Arias Gomez

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 34

    Oracle Sales Cloud

    Implementation Partner Workshop

    Data Residency for Sales Cloud


    Integrated solution delivered through Blue Coat

    June, 2016

    Copyright © 2016, Oracle and/or its affiliates. All rights reserved.


    Safe Harbor Statement
    The following is intended to outline our general product direction. It is intended for
    information purposes only, and may not be incorporated into any contract. It is not a
    commitment to deliver any material, code, or functionality, and should not be relied upon
    in making purchasing decisions. The development, release, and timing of any features or
    functionality described for Oracle’s products remains at the sole discretion of Oracle.

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 3


    Topics
    Configure & Manage
    Get Oracle Execute Learn Core Customize Work with Integrate
    Administer Related
    Sales Cloud Initial Setup SFA + PRM the Data with Other
    Key Areas Sales Cloud
    + SPM Application Shapes Systems
    Areas

    • Cloud Adoption Challenges and Drivers


    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary
    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 4
    Agenda
    • Cloud Adoption Challenges and Drivers
    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 5


    Public Cloud Adoption Challenges
    Data Governance in the Cloud Age

    • Data Security At Rest


    • Data Security in Motion
    • Governance and Access
    Control
    • Data Sovereignty and
    Residency

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Data Residency Drivers

    International Industry Surveillance


    Data Protection Laws Privacy Regulations Programs

     Canada British Columbia


     Healthcare and Insurance  USA: NSA Prism
    FOIPPA

     German BDSG Data  France: General Directorate


     Telecommunications
    Protection Act Of External
     Dubai International
     Canada: Communications
    Financial Center, Saudi  Financial Services
    Security Establishment
    Arabian Monetary Agency

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 7


    Cloud Data Privacy Regulations

    http://perspecsys.com/cloud-computing-regulations-around-world/

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 8


    A Growing Concern

    Countries with/out Data Privacy Laws


    http://papers.ssrn.com/sol3/cf_dev/AbsByAuth.cfm?per_id=57970#reg

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 9


    Data Protection Options for Customers
    • Enhanced protection that data stored in • Transparent Data Encryption: Supports encryption of all
    the Oracle Public Cloud cannot be application tables in the database using an encryption key that
    accessed without customer consent is securely stored in a separate location called Wallet

    • Database Vault: Restrict database admin, sysadmin and other


    highly privileged DBA accounts from accessing data while
    allowing authorized users full access

    Personal Data • Break Glass**: Ability to provide emergency temporary access


    to Oracle Staff for a short window through an approval process.
    In-built audit and reporting capability

    • Transparent Data Encryption • Key Management**: TDE encryption key is managed and
    • Database Vault rotated by the customer, not Oracle personnel, on a per
    • Break Glass environment basis
    • Key Management
    ** Upcoming

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Data Residency with Oracle’s Global Data Centers

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 11


    Data Residency with Tokenization
    ….delivered through Blue Coat
    • Assure that Personal Data cannot be accessed without customer consent, remains secured during internal
    cloud system processing, and facilitate customer decisions on a compliance strategy to satisfy their data
    privacy and data residency requirements

    Blue Coat
    Gateway Personal Data

    • Blue Coat Integration with Oracle Sales Cloud

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Choosing the Right Option
    Complementary to Oracle Options – not an “either/or”
    Requirement Data Vault TDE Key Management Break Glass Blue Coat
    Restrict non-employee access to data

    Deny database level changes (only


    through app)
    Encrypt data in the database
    Indiscernible outside network (including
    Cloud Ops)
    Customer driven encryption key
    Control Access to data at DB level
    Keep data at customer site
    Provide audited access to DB

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 13


    Agenda
    • Cloud Adoption Challenges and Drivers
    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 14


    Introducing Blue Coat

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Solutions Addressing Cloud Data Control

    Maintaining data control


    Application visibility and Access control and usage and geographic
    reporting management sovereignty

    CONTROLS ENABLING EXPANDED CLOUD USE

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Agenda
    • Cloud Adoption Challenges and Drivers
    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 17


    Cloud Data Protection with Tokenization
    Data replaced with surrogate
    encrypted
    or token value

    Enterprise owns keys or


    token vault

    Data never exposed during


    its “cloud” lifecycle

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Data Protection Process with Tokenization

    1
    Data Governance Defines
    Sensitivity Classification
    2
    Cross-Cloud Data Protection
    Policies Centralized

    Policies Enforced Delivers Data Control


    Real-Time
    Without Impacting the Use
    of the Cloud Application

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Tokenization vs Encryption
    Unlike encrypted values that rely on an
    encryption key, tokens have no
    Cloud Data Protection mathematical correlation with actual
    Gateway (CDPG) values…

    Firewall
    John Smith

    Token Vault

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Tokenization vs Encryption
    In case the encryption key is compromised,
    data in the cloud can be decrypted…
    Cloud Data Protection
    Gateway (CDPG)

    Firewall
    John Smith

    Token Vault

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Enterprise Features and Benefits

    IT CLOUD END
    SECURITY USERS
    PROFESSIONALS PROFESSIONALS
    EASY & SCALES “INVISIBLE”
    STRONG UNDERLYING
    SECURITY
    • Tokenization or • Simple data security • “I do not even know that
    Encryption policy administration Blue Coat is operating in
    the background”
    • Encryption and Key
    • One platform, all clouds
    Management of the
    enterprise’s choice
    • Scalable

    END USERS GET THE POWER OF THE ORACLE SALES CLOUD;


    COMPLIANCE & SECURITY PROFESSIONALS
    GET THE DATA CONTROL THEY REQUIRE

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. |


    Blue Coat
    Gateway

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 23
    Bypass Gateway -
    Unauthorized-user

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 24
    Agenda
    • Cloud Adoption Challenges and Drivers
    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 25


    Blue Coat V1 Integration Summary
    Capabilities Protectable PII Attributes
    •Flexibility to select attributes on a field-by-field basis from the • Contact and Household PII attributes
    protectable list • Address attributes across all objects
    •Sensitive data intercepted and persisted before reaching Oracle Cloud; • Phone and Email across all objects
    applies to web and mobile clients • Document attachments across all objects
    • Note Text across all objects
    •Ability to search, create, and edit on protected objects and attributes • Sensitive attributes in Lead Object
    •Inbound and outbound SOAP and REST API calls will support data
    residency by having API traffic routed through Blue Coat gateway
    •Protected attachments and metadata are safely stored in Blue Coat Custom Objects and Attributes
    gateway • Custom attributes in Standard Objects
    supported
    Data Scope Prioritization for Initial Release • Custom objects and attributes
    • Text, Long Text, Currency and Dynamic Choice
    • Personal Data fields specific to Contact and fields that could potentially List types
    hold sensitive information about individuals • Formula fields with restrictions
    • Extensibility support with custom fields

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 26


    Agenda
    • Cloud Adoption Challenges and Drivers
    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 27


    Implementation Activities
    Pre-requisites / Tasks Owner
    Project Planning, Discovery, Architectural Design Customer / Blue Coat
    Implementation / Technical Specification Documentation Customer / Blue Coat
    Physical / Virtual server build and configuration – pre-Blue Coat solution install Customer
    Network / Infrastructure prep, including firewall, DNS, mail server and load balancer config changes Customer
    Server deployment ready configuration Blue Coat
    Database installation, including any database encryption such as TDE) Customer
    Database configuration : Schema and user creation Customer or Blue Coat
    Blue Coat software installation Blue Coat
    Integration with Oracle Sales Cloud instance (s) Customer or Blue Coat
    Data protection Policy planning / definition Customer (with Blue Coat guidance)
    Apply and managing protection Policies Customer (with Blue Coat guidance)
    Policy Testing (Web and Data Loader) Customer (with Blue Coat guidance)
    Data Export / Import Customer (with Blue Coat guidance)
    Testing Customer (with Blue Coat guidance)
    Documentation / Project Wrap-up Blue Coat and Customer

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 28


    Agenda
    • Cloud Adoption Challenges and Drivers
    • Blue Coat Overview
    • Data Residency with Tokenization
    • Integration Overview
    • Implementation Activities
    • Summary

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 29


    Blue Coat for Oracle Sales Cloud
    Key Features Key Benefits
    • 50+ PII attributes and unlimited custom attributes • Compliance with international and industry data
    to pick for protection protection laws and regulations
    • Easy-to-use management console to manage data • Sensitive data and documents never leave your
    protection policies network
    • Supports pre-built integrations with Oracle CX • Flexibility to access secure data through Web,
    and Siebel Mobile and Outlook interfaces
    • Purpose built for Oracle Sales Cloud platform • Integrated solution delivers optimal performance
    with minimal functionality loss
    • Support for secure data import, document upload
    and notes capture • Flexibility to tokenize or encrypt data depending
    on perceived risk level
    • SOAP and REST API support

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 30


    Choosing the Right Option
    Complementary to Oracle Options – not an “either/or”

    Requirement Data Vault TDE Key Management Break Glass Blue Coat
    Restrict non-employee access to data

    Deny database level changes (only


    through app)
    Encrypt data in the database
    Indiscernible outside network (including
    Cloud Ops)
    Customer driven encryption key
    Control Access to data at DB level
    Keep data at customer site
    Provide audited access to DB

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 31


    Summary
    • On-site hardware consists of servers to contain the Blue Coat
    gateway, proxy and optional components for remote users
    and email integration
    • Implementation project is in co-operative with customer and
    Blue Coat
    • Timeline is very dependant upon scope of work and
    tokenization policies; contact Blue Coat early to obtain
    budgetary numbers

    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 32


    Copyright © 2016 Oracle and/or its affiliates. All rights reserved. | 33

    You might also like