Wednesday, March 1, 2023

Oracle Backup & Recovery Technologies - Year in Review

We are looking forward to another exciting year across our technology portfolio, including Recovery Manager (RMAN), Oracle Secure Backup (OSB), Database Backup Cloud Service (DBBCS), Zero Data Loss Recovery Appliance (ZDLRA), and the new ZDLRA-based OCI service, Oracle Database Zero Data Loss Autonomous Recovery Service (ZRCV). Future blogs will highlight new product offerings, best practices, and commentary on industry trends in the backup and recovery market.


In looking ahead, it’s always good to spend a little time looking back at highlights of the previous year, demonstrating our innovation and leadership in Oracle data protection and recovery solutions.

Zero Data Loss Recovery Appliance


Marking its 8th year in commercial availability, Recovery Appliance continues to evolve unique database protection capabilities beyond general-purpose backup solutions. These capabilities are centered around: Resilient Recovery, Infrastructure Efficiency and especially visible with customers today: Effectively Defending and Recovering from Ransomware. To that end, the appliance protects transactions in real-time, validates backups for database recoverability, and optimizes backups for fast recovery. These capabilities are a necessity in the face of ransomware attacks which can occur at any time and spread to any number of systems. Recovering all affected systems quickly and to a transactionally-consistent safe point is crucial for data availability and data quality – these are fundamental tenets for which Recovery Appliance was designed, as shown below.

Recovery Appliance End-to-End Ransomware Protection
 

In the latest RA 21.1 software release, new capabilities were introduced to defend against malicious access and tampering.

First, role-based users allow finer-grained provisioning for system access, helping tighten overall security controls in your backup infrastructure:

◉ Named administrator user limited to day-to-day activities via documented management API and Enterprise Manager
◉ Monitor user with read-only / reporting access
◉ Quorum administrator approval to gain system/root privileges. 

Second, new immutability settings prevent the deletion of backups by any internal or external user within a pre-defined retention period. Backups continue to be preserved under the original retention period even if an administrator reduces the setting in an attempt to force the system to purge older backups.

Given the critical nature and impact of ransomware attacks, these capabilities were purposefully designed to meet requirements outlined in SEC 17a-4(f), a key data governance regulation in the banking industry – see the product assessment report for more details on the regulation and relevant capabilities offered by the appliance.

With respect to Recovery Appliance management capabilities, Oracle Enterprise Manager 13.5 was enhanced to support the aforementioned role-based user model and immutability controls, in addition to TLS network encryption, backup & recovery high availability between appliances, and compatibility with REST-enabled management products:

◉ Named Users Management (Administrator, Monitoring User, VPC User)
◉ Administrator API Execution History Monitoring
◉ Immutable (Compliance) Backups
◉ Configuration and Backup to TLS-enabled Appliance
◉ End-to-End Replication Configuration & Management for High Availability
◉ New REST APIs for Common Administrator Operations

Zero Data Loss Autonomous Recovery Service


At CloudWorld 2022, we announced the Oracle Database Zero Data Loss Autonomous Recovery Service. This new fully managed Oracle Cloud Infrastructure (OCI) service is based on Zero Data Loss Recovery Appliance technology and delivers protection capabilities for Oracle Database services running on OCI. The Recovery Service helps organizations meet the business-critical need to reduce ransomware risk, financial requirements for improved operational efficiency, and user expectations for cloud service simplicity.

Zero Data Loss Autonomous Recovery Service Architecture Overview

Oracle Database Backup Service


The Database Backup Cloud Module now supports the use of OCI Object Storage Locked Retention Rules for compliance and ransomware protection. This Retention Rule prevents any deletion or modification of objects in a designated bucket for a pre-defined period of time.

These retention controls were also assessed to meet SEC 17a-4(f), a key regulation for financial services customers – for more information, see the product assessment report.

Oracle Secure Backup


Oracle Secure Backup (OSB) protects file systems as well as Oracle and MySQL Databases to disk, tape and Cloud storage on-premises, in the Cloud, and for hybrid environments. As Cloud deployments become ubiquitous, the product team has been focusing on OCI data protection use cases, including backup of block volumes, VMs, and Oracle Home directories of Exadata Database Service databases. In fact, there are hundreds of customers today protecting their OCI Compute Instances and File Systems with OSB:

◉ 300 Tenancies (Customers)
◉ 6,500 Clients (5000 Linux, 1500 Windows)
◉ 6,500 Full Backups per week
◉ 39,000 Incremental Backups per week
◉ 10 PB stored in OCI Object Storage
◉ 10 Restores per month

OSB recently became available on the OCI Marketplace for fast and easy deployment into an OCI tenancy. In just a few clicks, an OSB Domain Admin Server is set up and ready to use. The deployment includes Ansible PlayBooks to automate the installation of OSB Client Agents on your OCI Compute Instances.


Source: oracle.com

Related Posts

0 comments:

Post a Comment