In which two ways can Oracle Security Zones assist with the cloud security shared responsibility model? (Choose two.)
In which two ways can Oracle Security Zones assist with the cloud security shared responsibility model? (Choose two.)
Oracle Security Zones can assist with the cloud security shared responsibility model in two important ways. First, they can deny public access to Oracle Cloud Infrastructure resources, such as databases and object storage buckets, enhancing the security of those resources. Second, they allow for adding or moving a standard compartment to a highly secured security zone compartment, which helps in maintaining high security standards for sensitive workloads. These approaches ensure that security policies are enforced, mitigating the risk of unauthorized access.
Oracle Cloud Infrastructure (OCI) offers best-in-class security technology and operational processes to secure its enterprise cloud services. Customers are responsible for securing their workloads and configuring their services and applications securely to meet their compliance obligations. Oracle Security Zones can assist with the cloud security shared responsibility model in the following ways: Deny public access to Oracle Cloud Infrastructure resources, such as databases and object storage buckets Enforce the policy that requires detached storage resources to reside in the same secure compartment as the compute instance Encrypt storage resources, such as block volumes, object storage buckets, and databases, with a customer-managed key
https://docs.oracle.com/en/solutions/oci-security-zones/index.html