In this post, I will focus on securing object storage data with your own encryption key, but note that this content is still very relevant for other OCI services such as block, object or file services or Oracle's platform solutions such as databases, analytics, etc. By default, OCI/Oracle automatically manages the keys that are used to encrypt and secure your data on the OCI platform.. this makes things a little simpler - you know your data is secure, so you don't need to worry about it. However, there may be requirements to use customer-managed encryption keys. We will explore how in the post.
Compartment
Creating an Object Storage Bucket in Oracle Cloud
In Oracle Cloud, object storage is used to store and manage data as objects, providing a reliable, secure and scalable service. OCI Object storage uses "buckets" as a method of organizing the objects (or files). Ultimately, you can think of a bucket as a container that stores -ideally related- objects within an Oracle Cloud compartment within a namespace. A bucket can only be associated to a single compartment and it's possible to set policies against the compartment & bucket which define the actions/permissions that a user or group have to manipulate the bucket and the objects in the bucket. In this post, I will explain how you can very easily create a object storage bucket in Oracle Cloud.
Creating a Compartment in Oracle Cloud
In Oracle Cloud, compartments are used to implement a degree of organization to your provisioned resources. They can also help you to more easily control access to your nicely organized resources. Assuming you are organizing things well, Compartments should be a collection provisioned resources that are related to one another and might typically be accessed/controlled by the same kind of user. In doing so permissions can be given to specific user groups to access and manage a compartment by an administrator. In this post, I will explain how you can very easily create a compartment in Oracle Cloud.
AMY SIMPSON-GRANGE - BLOG 