Immutability and Anomaly Detection

Recovery Service controls backup retention and performs continuous anomaly detection.

Strict Backup Retention and Immutability

Recovery Service uses protection policies to control backup retention and prevent any modifications to backups. Additionally, a policy can be retention locked to enforce strict backup retention. If the retention lock is in effect, then Recovery Service strictly prohibits the modification or deletion of backups until the retention period expires, and this restriction applies to all users including tenancy administrators. See Retention Lock for details.

Continuous Data Anomaly Detection

Recovery Service performs continuous data anomaly detection of all backups to identify any issues that can compromise data recovery. This helps in case there is malicious user activity or a ransomware attack. Any anomaly issue is immediately reported through alerts in the OCI console and by health status reporting.

Recovery Service performs anomaly detection throughout these different stages of the data protection life cycle:
  • At the source database before backups are sent to Recovery Service.
  • When backups arrive on Recovery Service.
  • When backups are replicated.
  • Regularly during the recovery window.