Merge branch 'main' into RafSzaf-patch-1

cloud-infrastructure/infrastructure-security/bastion/README.md

@@ -2,7 +2,7 @@
 
 Oracle Cloud Infrastructure Bastion provides restricted and time-limited access to target resources that don't have public endpoints.
 
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 

cloud-infrastructure/infrastructure-security/cloudguard/README.md

@@ -6,7 +6,7 @@ Cloud Guard detects security problems within a customer tenancy by ingesting aud
 
 Responders can mitigate, correct, and prevent security issues based on a problem.
 
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 
@@ -17,6 +17,10 @@ Reviewed: 30.01.2024
 
 - [Cloud Coaching Cloud Guard](https://www.youtube.com/watch?v=D5L0Hy8h9aY)
     - Video about Oracle Cloud Guard
+- [Cloud Coaching Setup and Enforce Your Cloud Posture with Oracle Cloud Guard](https://youtu.be/_F6sEAhCeMU)
+    - Video about Setup and Enforce Your Cloud Posture with Oracle Cloud Guard
+
+
 
 # Useful Links
 
@@ -26,6 +30,8 @@ Reviewed: 30.01.2024
     - Documentation showing how you can integrate Cloud Guard with your SIEM
 - [Cloud Guard and Security Zone Video]( https://www.youtube.com/watch?v=aYmKk5-FJJk)
     - Video by Clay Magouyrk showing Cloud Guard and Security Zones
+- [Oracle Cloud Guard Instance Security](https://www.oracle.com/security/cloud-security/cloud-guard/instance-security/)
+    - Oracle Cloud Guard Instance Security Overview
 
 
 # License

cloud-infrastructure/infrastructure-security/eusc/README.md

@@ -2,7 +2,7 @@
 
 EU Sovereign Cloud is Oracle’s sovereign cloud offering, designed for the data laws and requirements of the EU.
 
-Reviewed: 31.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 

cloud-infrastructure/infrastructure-security/iam/README.md

@@ -2,7 +2,7 @@
 
 OCI IAM is a native service of OCI that provides enterprise-class identity and access management features such as strong, adaptive authentication, user Lifecycle Management (LCM), and Single Sign-On (SSO) to enterprise applications. OCI IAM is deployed as an identity domain(s) in OCI. Included domain(s) allow organizations to manage access to their Oracle Cloud services (network, compute, storage, etc.) and Oracle SaaS applications. Customers can choose to upgrade or create additional identity domains to accommodate other use cases such as managing workforce access to non-Oracle applications, enabling consumer access to customer-facing applications, or embedding IAM into custom-developed applications.
 
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 
@@ -20,6 +20,10 @@ Reviewed: 30.01.2024
 - [SAML with JIT provisioning to setup an identity broker or identity hub](  https://blogs.oracle.com/coretec/post/saml-with-just-in-time-provisioning-to-setup-an-identity-broker-or-identity-hub)
     - Video about SAML with JIT Provisioning to set up an Identity Broker
 
+- [OCI SSO with OpenID Connect Integration](https://blogs.oracle.com/coretec/post/oci-sso-with-openid-connect-integration)
+    - Blog about OCI SSO with OpenID Connect Integration
+
+
 - [SSO/Federation with Keycloak and IDCS and/or OCI IAM-Domains](https://blogs.oracle.com/coretec/post/ssofederation-with-keycloak-and-idcs-andor-oci-iam-domains)
     - Blog about SSO/Federation with Keycloak and IDCS and/or OCI IAM-Domains
 

cloud-infrastructure/infrastructure-security/isolated-region/README.md

@@ -2,7 +2,7 @@
 
 Oracle Cloud Isolated Region is a secure, air-gapped Oracle Cloud Infrastructure (OCI) solution designed to meet the higher demands of global customers’ mission-critical classified workloads.
 
-Reviewed: 31.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 

cloud-infrastructure/infrastructure-security/ocivault/README.md

@@ -1,8 +1,8 @@
-# OCI Vault
+# OCI KMS
 
-OCI Vault lets you centrally manage and control the use of keys and secrets across a wide range of OCI services and applications. OCI Vault is a secure, resilient managed service that lets you focus on your data encryption needs without worrying about time-consuming administrative tasks such as hardware provisioning, software patching, and high availability.
+OCI KMS lets you centrally manage and control the use of keys and secrets across a wide range of OCI services and applications. OCI KMS is a secure, resilient managed service that lets you focus on your data encryption needs without worrying about time-consuming administrative tasks such as hardware provisioning, software patching, and high availability.
 
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 
@@ -17,20 +17,20 @@ Reviewed: 30.01.2024
 
 # Useful Links
 
-- [OCI Vault Overview](https://www.oracle.com/uk/security/cloud-security/key-management/)
-    - OCI Vault Overview
+- [OCI KMS Overview](https://www.oracle.com/uk/security/cloud-security/key-management/)
+    - OCI KMS Overview
 
-- [OCI Vault Documentation](https://docs.cloud.oracle.com/en-us/iaas/Content/KeyManagement/Concepts/keyoverview.htm)
-    - OCI Vault documentation
+- [OCI KMS Documentation](https://docs.cloud.oracle.com/en-us/iaas/Content/KeyManagement/Concepts/keyoverview.htm)
+    - OCI KMS documentation
 
-- [OCI Vault FAQ](https://www.oracle.com/uk/security/cloud-security/key-management/faq/)
-    - OCI Vault response to frequently asked questions
+- [OCI KMS FAQ](https://www.oracle.com/uk/security/cloud-security/key-management/faq/)
+    - OCI KMS response to frequently asked questions
 
-- [OCI Vault Video](https://www.youtube.com/watch?v=MkM_fJbFjJg)
-    - OCI Vault introduction video
+- [OCI KMS Video](https://www.youtube.com/watch?v=MkM_fJbFjJg)
+    - OCI KMS introduction video
 
-- [OCI Vault External KMS with Thales](https://blogs.oracle.com/cloudsecurity/post/announcing-external-key-management-service-in-oci)
-    - OCI Vault External KMS with Thales - Announcement
+- [OCI KMS External KMS with Thales](https://blogs.oracle.com/cloudsecurity/post/announcing-external-key-management-service-in-oci)
+    - OCI KMS External KMS with Thales - Announcement
 
 - [OCI Dedicated KMS](https://blogs.oracle.com/cloud-infrastructure/post/dedicated-kms-owning-keys-hsm-partitions-cloud)
     - OCI Dedicated KMS: Owning your keys and HSM partitions in the cloud

cloud-infrastructure/infrastructure-security/shared-assets/security-checklist/README.md

@@ -6,9 +6,7 @@ CIS Oracle Cloud Infrastructure Foundations Benchmark provides prescriptive guid
 baseline configuration for the Oracle Cloud Infrastructure environment. The scope of this benchmark is to
 establish a base level of security for anyone utilizing the included Oracle Cloud Infrastructure services. The current OSSA checklist is aligned with the CIS OCI Benchmark 1.2.0
 
-Owner: Ravi Agrawal
-
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # When to use this asset?
 

cloud-infrastructure/infrastructure-security/vss/README.md

@@ -2,7 +2,7 @@
 
 Oracle Cloud Infrastructure Vulnerability Scanning Service eliminates risk from new, unpatched vulnerabilities and open ports by assessing and monitoring cloud hosts.
 
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 

cloud-infrastructure/infrastructure-security/waf/README.md

@@ -2,7 +2,7 @@
 
 Oracle Cloud Infrastructure Web Application Firewall (WAF) is a cloud-based, PCI-compliant, global security service that protects applications from malicious and unwanted internet traffic. Oracle Cloud Infrastructure WAF can protect any internet-facing endpoint, providing consistent rule enforcement across a customer's applications. 
 
-Reviewed: 30.01.2024
+Reviewed: 18.11.2024
 
 # Table of Contents
 

cloud-infrastructure/private-cloud-and-edge/README.md

@@ -1,5 +1,7 @@
 # Private Cloud and Edge
 
+Reviewed: 18.11.2024
+
 ## Useful Links
 
 - [Oracle Compute Cloud@Customer](https://www.oracle.com/uk/cloud/compute/cloud-at-customer/)

cloud-infrastructure/private-cloud-and-edge/compute-cloud-at-customer/README.md

@@ -0,0 +1,15 @@
+# Compute Cloud@Customer
+
+Reviewed: 18.11.2024
+
+## Useful Links
+
+- [Oracle Compute Cloud@Customer](https://www.oracle.com/uk/cloud/compute/cloud-at-customer/)
+
+## License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

cloud-infrastructure/private-cloud-and-edge/hsp/README.md → cloud-infrastructure/private-cloud-and-edge/compute-cloud-at-customer/hsp/README.md

@@ -1,5 +1,7 @@
 # C3 Hosting Service Provider - IAM Policies for Isolation
 
+Reviewed: 18.11.2024
+
 The Hosting Service Provider (HSP) model on Compute Cloud@Customer (C3) allows
 hosting for multiple end customers, each isolated in a dedicated compartment
 with separate VCN(s) per customer. To ensure the end customer can only

cloud-infrastructure/private-cloud-and-edge/observability and management/README.md → cloud-infrastructure/private-cloud-and-edge/compute-cloud-at-customer/observability and management/README.md

@@ -1,5 +1,7 @@
 # C3 OKE - Monitoring with OCI Log Analytics
 
+Reviewed: 18.11.2024
+
 ## Introduction
 
 This page details an all OCI solution for monitoring kubernetes clusters