Skip to main content

Posts

SQL Firewall in Oracle Database – How to Prevent SQL Injection at DB Layer

SQL injection is one of the most common security risks in database driven applications. Normally, protection is implemented in the application layer using input validation and parameterized queries. However this approach depends heavily on developers and code quality. The SQL Firewall feature in Oracle Database introduces a different approach by adding protection directly at the database layer. This allows the database itself to identify and block unauthorized or suspicious SQLs before they are executed. How SQL Firewall Works The SQL Firewall works by learning the normal SQL patterns used by an application and then allowing only those approved statements to run. Any new or unexpected SQL is treated as a potential threat and can be blocked. This is especially useful for production environments where code changes are difficult and applications that are exposed to the internet. By implementing security at the database level, organizations gain an additional defense layer without modi...
Post a Comment
Read more
Recent posts

Building Continuous Data Trust with Oracle GoldenGate Veridata 26c

Today I'll discus on how we can build continuous data trust with Oracle GoldenGate Veridata 26c! As we accelerate towards hybrid and multi cloud architectures , one challenge keep coming up. That is "H ow do you trust your data across all these platforms?" With increasing data movement, replication, and transformation, even small changes can lead to major business risks. This is where Oracle GoldenGate Veridata 26c comes in handy! Rather than just validating data occasionally, the focus now is on continuous data trust . What is Veridata? It is a tool to compare data across different systems. It ensures source and target databases are in sync. It works during , Data migration, Replication setups, Ongoing operations. What’s new in Veridata 26c? 1. Support for Modern Architectures Built for hybrid, multi-cloud, and lakehouse environments with support for heterogeneous databases. 2. Continuous Data Validation Enables ongoing validation to detect data drift and inconsisten...
Post a Comment
Read more

How to create a simple Serverless API Using Oracle Cloud Functions

Modern cloud applications are moving toward serverless architectures because they reduce infrastructure management and allow developers to focus on code. Oracle Cloud Infrastructure (OCI) provides a powerful serverless service called “Oracle Functions”. It allows developers to run code without managing servers. In this post, I’ll go through how to create a simple serverless API using Oracle Functions and expose it through an HTTP endpoint. Oracle Functions provides several advantages, No server management Automatic scaling Pay only for execution time Easy integration with other OCI services   The process of flow is as below, User sends an HTTP request OCI API Gateway triggers a Function Function processes the request Response is returned Lets see how to create a simple function. 1.       First create a function using the 'Fn Project CLI' supported by OCI. fn init --runtime python myhello-function cd myhello-function 2. ...
Post a Comment
Read more

How OCI’s Security Model differs from other Clouds

Oracle Cloud Infrastructure (OCI) follows a security first approach that is different from many other cloud providers. In OCI, security is built into the platform from the beginning.  When you create resources in OCI, they start in a secure state by default. For example: compute instances do not receive a public IP automatically, network access is blocked unless you explicitly allow it, and all storage is encrypted without requiring extra configuration. This design helps reduce common security mistakes caused by misconfiguration. OCI also stands out because of its strong isolation model. It offers true bare metal servers where customers get full control of the hardware, and Oracle does not have access to customer memory. Even virtual machines are designed with strong tenant isolation. This is different from many other cloud platforms where workloads often share underlying infrastructure. Strong isolation reduces the attack surface and makes OCI a good choice for industries with str...
Post a Comment
Read more

Why Oracle Cloud Infrastructure is powering the Next Generation of Enterprise Innovation

Oracle Cloud Infrastructure (OCI) is a modern cloud platform designed to help businesses run their applications faster, safer, and at lower cost. It supports companies of all sizes in moving their workloads to the cloud with confidence. OCI is built for high performance. Its advanced architecture allows applications, databases, and workloads to run smoothly with low latency. This makes it suitable for business critical systems, data analytics, and enterprise applications. Security is a core feature of Oracle Cloud. Data is encrypted by default, and strong identity and access controls help protect systems from threats. OCI also meets global compliance standards, making it a trusted choice for regulated industries. Oracle Cloud works especially well with Oracle databases and applications, offering better performance and efficiency. At the same time, it supports open source tools and technologies, allowing organizations to use the platforms and frameworks they already know. Oracle Cloud...
Post a Comment
Read more

Why Oracle 23ai Is a Game Changer for Full Stack Developers!

Full stack developers work across the frontend, backend, and database. This often means using many tools just to build one application. Oracle Database 23ai reduces this complexity by bringing modern features like JSON support, AI capabilities, and better SQL directly into the database. This allows developers to focus more on building features and less on managing infrastructure. Oracle 23ai supports multiple data types in a single database. Modern applications deal with relational data, JSON documents, and sometimes AI related data like vectors. Earlier, developers had to use separate systems for these. With Oracle 23ai, everything can live in one place, making applications easier to design and maintain. One of the biggest improvements for developers is JSON support . Full-stack developers often prefer JSON because it fits naturally with APIs and frontend frameworks. Oracle 23ai lets developers read and write data as JSON while storing it internally in relational tables for better p...
Post a Comment
Read more

Is Oracle Database 23ai worth upgrading to?

Oracle Database 23ai marks a significant shift in Oracle’s database strategy.  Rather than being just another incremental release, it positions itself as an AI native database , bringing artificial intelligence capabilities directly into the core of the database engine. For organizations already running Oracle,lets see whether  upgrading to Oracle Database 23ai actually worth it? Traditionally, databases focused on storing and retrieving structured data efficiently. AI workloads, such as semantic search, were handled outside the database using separate vector stores or search engines. Oracle Database 23ai changes this model by introducing native vector data types and vector search capabilities . With 23ai, embeddings generated by AI models can live in the same database as the transactional data. This removes the need for complex synchronization pipelines between systems and allows developers to query AI driven data using familiar SQL. For example, storing vector data is straig...
Post a Comment
Read more