11.5 Database Security in Multitenant Environment
Starting from Oracle Database Release 21c, Oracle JVM security is enhanced to make it well suited for a multitenant environment.
Oracle JVM supports the key security mechanism of Oracle Multitenant Database, which is multitenant isolation using the pluggable database (PDB) lockdown profiles. It currently supports the following lockdown profile features:
OS_ACCESSNETWORK_ACCESSJAVAJAVA_RUNTIMEJAVA_OS_ACCESS
In addition to the PDB lockdown profiles, Oracle JVM also supports the following PDB parameters that further enhance multitenant isolation:
- The
PATH_PREFIXclause of theCREATE PLUGGABLE DATABASEstatement - The
PDB_OS_CREDENTIALinitialization parameter
See Also:
- Oracle Multitenant Isolation White Paper
- ALTER LOCKDOWN PROFILE for description of PDB lockdown profile features
- CREATE PLUGGABLE DATABASE for more information about the
PATH_PREFIXclause - PDB_OS_CREDENTIAL for more information about the
PDB_OS_CREDENTIALinitialization parameter