Press Releases Archive   Search Press Releases
Press Release

F5 Joins with Oracle to Offer Enhanced Security for Web-Based Database Applications

BIG-IP Application Security Manager and Oracle Database Firewall integration provides exceptional SQL injection protection for F5 customers and richer forensic information for Oracle customers

F5 Networks, Inc. (NASDAQ: FFIV), a global leader in Application Delivery Networking (ADN), today announced integration between the F5® BIG-IP® Application Security Manager (ASM) product and the Oracle Database Firewall. Building on F5’s ability to help simplify database administration and accelerate database replication for Oracle customers, the integration provides improved SQL injection protection for F5 customers and correlated reporting for richer forensic information on SQL injection attacks for Oracle customers.

“F5 provides a suite of customizable technologies to support Oracle Database deployments,” said Andy Bailey, SVP, Alliances & Channels at Oracle. “The integration of F5’s BIG-IP Application Security Manager to the Oracle Database Firewall further shows how partners can differentiate their offerings by providing customers with value-added solutions based on Oracle products.”


As enterprise customers deploy more web-based database applications, IT administrators continue to face the challenge of securing both application and database environments from threats such as SQL injection and cross-site scripting attacks. By using F5 and Oracle solutions together, customers can now benefit from enhanced protection for web-based database applications.

Highlights of F5 and Oracle solutions include:

  • Improved SQL Injection Protection for F5 Customers

Oracle Database Firewall, part of Oracle’s comprehensive portfolio of database security solutions, monitors database traffic from applications to detect and block SQL injection, privilege or role escalation, and other external and internal attacks. It uses an innovative SQL grammar analysis approach that provides unprecedented accuracy and scalability. Using pre-defined policies, the Oracle Database Firewall will take the appropriate action, helping to eliminate time consuming and costly false positives. When the BIG-IP ASM detects a SQL injection attack, it notifies the Oracle Database Firewall of the threat.

  • Correlated Reporting for Richer Forensic Information

Leveraging F5’s flexible iRules® capabilities, BIG-IP ASM sends information about web application user identity and session such as IP address, time, and more to the Oracle Database Firewall. When the Oracle Database Firewall is notified of a SQL injection attack by the BIG-IP ASM, it logs that event using all the additional information about the identity of the user, their origin, and so forth, and correlates it with its own policy enforcement, enabling IT teams to better identify trends and react more quickly to an attack.

“We’re excited to expand our relationship with Oracle to offer joint customers a solution that enhances web-based database application security,” said Calvin Rowland, VP, Application Partner Programs at F5. “F5 solutions serve as strategic points of control, enabling customers to easily add security, optimization, and availability services as they scale their overall IT infrastructure. F5’s efforts with Oracle help us extend the capabilities of our solutions and deliver enhanced value for joint customers.”

“Web applications are quickly becoming the most common threat vector today’s hackers look to exploit; applications like Facebook and Twitter get the most coverage, but there are thousands of web applications that are unprotected and represent a significant risk,” said Jeff Wilson, Principal Analyst, Security at Infonetics Research. “While there are many products available that address web application security, solutions that tightly integrate database security are relatively few. With this announcement, F5 and Oracle are offering an innovative solution that provides significant benefits for joint customers.”


This F5 component of the solution is included with BIG-IP Application Security Manager at no additional fee. Customers can contact their Oracle representative for pricing on Oracle Database Firewall. For more information on Oracle Database Firewall, please visit

 F5 is a Gold-level member of the Oracle PartnerNetwork.

About F5

F5 Networks is a global leader in Application Delivery Networking (ADN), focused on ensuring the secure, reliable, and fast delivery of applications. F5’s flexible architectural framework enables community-driven innovation that helps organizations enhance IT agility and dynamically deliver services that generate true business value. F5’s vision of unified application and data delivery offers customers an unprecedented level of choice in how they deploy ADN solutions. It redefines the management of application, server, storage, and network resources, streamlining application delivery and reducing costs. Global enterprise organizations, service and cloud providers, and Web 2.0 content providers trust F5 to keep their business moving forward. For more information, go to

You can also follow @f5networks on Twitter or visit us on Facebook for more information about F5, its partners, and technology. For a complete listing of F5 community sites, please visit

F5, BIG-IP, Application Security Manager, ASM, and iRules are trademarks or service marks of F5 Networks, Inc. in the U.S. and other countries. Oracle and Java are registered trademarks of Oracle and/or its affiliates. All other product and company names herein may be trademarks of their respective owners.

# # #

This press release may contain forward looking statements relating to future events or future financial performance that involve risks and uncertainties. Such statements can be identified by terminology such as "may," "will," "should," "expects," "plans," "anticipates," "believes," "estimates," "predicts," "potential," or "continue," or the negative of such terms or comparable terms. These statements are only predictions and actual results could differ materially from those anticipated in these statements based upon a number of factors including those identified in the company's filings with the SEC.