Slashdot Mirror

← Back to Stories (view on slashdot.org)

Oracle Challenges Pentagon's $10 Billion Cloud Computing Contract (theregister.co.uk)

Posted by BeauHD on from the JEDI-mine-trick dept.

Oracle has filed an official complaint with the U.S. government over plans to award the Pentagon's lucrative cloud contract to a single vendor. Rebecca Hill writes via The Register: The Joint Enterprise Defense Infrastructure (JEDI) contract, which has a massive scope, covering different levels of secrecy and classification across all branches of the military, will run for a maximum of 10 years and is worth a potential $10 billion. In spite of this pressure from vendors and the tech lobby -- as well as concerns from Congress -- the US Department of Defense (DoD) refused to budge, and launched a request for proposals (RFP) at the end of last month. Oracle is less than impressed with the Pentagon's failure to back down, and this week filed a bid protest to congressional watchdog the Government Accountability Office asking for the RFP to be amended.

In the protest, the database goliath sets out its arguments against a single vendor award -- broadly that it could damage innovation, competition, and security. Reading between the lines, it doesn't want either of Amazon or Microsoft or Google to get the whole pie to itself, and thus endanger Oracle's cosiness with Uncle Sam. Summing up its position in a statement to The Register, Oracle said that JEDI "virtually assures DoD will be locked into legacy cloud for a decade or more" at a time when cloud technology is changing at an unprecedented pace.

49 of 101 comments (clear)

  1. Oracle might actually have a point here. by sg_oneill · · Score: 4, Insightful

    I fundamentally dislike Oracle. Its an exploitative company that functions purely on ensnaring companies into deals that are far too costly then using legal shenanigans to stop them to leave.

    BUT, they are right here. Giving the whole contract , all ten billion of it, to a single contractor (And lets be clear here, its either AWS or Azure. Google are capable, but they dont have the govt mojo to compete in this space) is straight up monopoly building, and it creates a single point of vunerability to the DODs systems. By splitting things up over multiple providers, it enhances competition, and divides up responsibility in a way better suited to national security.

    And after all, they could still write "NO ORACLES ALLOWED" in it, right. (Well probably not, but hey)

    --
    Excuse the Unicode crap in my posts. That's an apostrophe, and slashdot is busted.
    1. Re:Oracle might actually have a point here. by someone1234 · · Score: 5, Insightful

      Oracle's only problem is that they are not that single contractor.

      --
      Patents Drive Free Software as Hurricanes Drive Construction Industry
    2. Re:Oracle might actually have a point here. by Bert64 · · Score: 1

      Agreed, although Oracle wouldn't be complaining if they were the ones getting the contract and they actively encourage customers to get locked in to their products so it's extremely hypocritical of them.

      There are several frameworks allowing use of multiple cloud providers and easy migration between them.

      --
      http://spamdecoy.net - free throwaway anonymous email - avoid spam!
    3. Re: Oracle might actually have a point here. by alvinrod · · Score: 2

      This is it right here. Full stop.

      I have never seen Oracle complain when they were the single party awarded a contract, and there are plenty of times where this has happened. Perhaps the best that could be said of them is that they realize how many times they have screwed over the other side in such contracts and that this is a bad idea, but I suspect the real reason is that they are pissed that they do not get to be the ones to screw over the government this time. They just hate the player, not the game.

    4. Re:Oracle might actually have a point here. by Anonymous Coward · · Score: 1

      In case you aren't aware, there is no such thing as a 10 year contract when it comes to the government. Because spending has to be re-authorized every year by Congress, all contracts are 1 year in length with an option to renew each year. Any corporation that does business with the government is aware of this. So each year it is theoretically possible for a different lobbyist firm or a different Congress to switch the contract. So even if the DoD does pick a single vendor for the engagement initially they will likely setup such that moving to another is possible if necessary.

    5. Re: Oracle might actually have a point here. by Junta · · Score: 3

      This is true, but that makes this all the more significant of a proof point of the value of competition. In a competitive landscape, there's going to be *someone* to call someone else on their shenanigans, even if it another usually bad actor.

      --
      XML is like violence. If it doesn't solve the problem, use more.
    6. Re: Oracle might actually have a point here. by Harlequin80 · · Score: 1

      If you go single supplier you can get use their respective PaaS offerings easily. If you go multiprovider you end you either splitting your operations into one pile or the other to get paas or you end up going least common denom and end up shitty Iaas everywhere.

      The choice, as others have said, will be aws or azure. Both allow an on-prem stack as well so you can control the physical as well as virtual.

      Id really rather never touch an oracle db ever again if i can.

    7. Re:Oracle might actually have a point here. by unbound55 · · Score: 2

      In fairness, Oracle's other problem is that many federal agencies are fed up with the massive costs Oracle keeps pushing on them. Oracle hasn't been doing well this year, and the top executives are starting to panic. Maybe Oracle would do better if they actually innovated their products instead of innovating price increases of their products.

    8. Re:Oracle might actually have a point here. by luis_a_espinal · · Score: 2

      I fundamentally dislike Oracle. Its an exploitative company that functions purely on ensnaring companies into deals that are far too costly then using legal shenanigans to stop them to leave.

      BUT, they are right here. Giving the whole contract , all ten billion of it, to a single contractor (And lets be clear here, its either AWS or Azure. Google are capable, but they dont have the govt mojo to compete in this space) is straight up monopoly building, and it creates a single point of vunerability to the DODs systems. By splitting things up over multiple providers, it enhances competition, and divides up responsibility in a way better suited to national security.

      And after all, they could still write "NO ORACLES ALLOWED" in it, right. (Well probably not, but hey)

      I'm on the fence here. I do think Oracle is in the right (Obi Wan's "from a certain point of view.") Such a 10B monopoly cannot be allowed to happen.

      OTH, the benefit of having one cloud provider is seamless integration and scaling. If there are multiple contractors, then that will entail multiple providers, multiple cloud technologies, etc.

      So the entire benefit of going to the cloud goes *poof*. If you (the generic "you") go to the cloud, you want to pick one provider, know the prons and cons and make it work. Otherwise, just don't - build your own facility.

      Having worked at a defense contractor once, I have no high hopes that the government (or defense contractors) will come up with an efficient abstraction on top of multiple providers.

      This is truly an interesting and challenging junction that goes beyond mere technicalities.

    9. Re:Oracle might actually have a point here. by datavirtue · · Score: 2

      So sick of people "deciding on a cloud provider." People just don't get it. Being cloud ready means possessing the ability to move to any of them at any time. If you have to decide on a cloud provider you should just stay on-prem until you can put on your big boy pants.

      Psst...spinning up VMs in the cloud and running your shitty software on them is in no way an advantage or a cost savings...and it certainly doesn't mean you are "in the cloud." Dumb fucks.

      If you are not 12-factor and abstracted from the infrastructure you are not cloud ready--you are locked in.

      --
      I object to power without constructive purpose. --Spock
    10. Re:Oracle might actually have a point here. by MachineShedFred · · Score: 1

      Just because their position happens to be right, doesn't mean they actually are right. Remember that they are coming to this position because THEY are not the single-source bidder. If they were the ones on the contract, they would be fighting with everything they have to keep it single-source, because the lock-in they decry in this case is their business model in every other case.

      Fuck Oracle. Someone else getting this contract actually IS competition for them, and might force them to learn how to actually compete based on merit, rather than having managers and procurement departments in their pocket.

      --
      Slashdot still doesnâ(TM)t support Unicode after it was added to the HTML standard in 1997.
    11. Re:Oracle might actually have a point here. by DickBreath · · Score: 1

      I don't have a problem with the government spreading the contract among multiple vendor companies.

      As long as none of them are Oracle.

      --

      I'll see your senator, and I'll raise you two judges.
    12. Re:Oracle might actually have a point here. by fahrbot-bot · · Score: 1

      Ya, but $10 billion would only buy the Government about 50 Oracle licenses?

      --
      It must have been something you assimilated. . . .
    13. Re:Oracle might actually have a point here. by jdschulteis · · Score: 1

      I'm on the fence here. I do think Oracle is in the right (Obi Wan's "from a certain point of view.") Such a 10B monopoly cannot be allowed to happen.

      AWS and Azure each do over $20B a year (and growing), adding $1B a year more to either one will not create a monopoly.

    14. Re:Oracle might actually have a point here. by Tough+Love · · Score: 1

      So sick of people "deciding on a cloud provider." People just don't get it. Being cloud ready means possessing the ability to move to any of them at any time. If you have to decide on a cloud provider you should just stay on-prem until you can put on your big boy pants.

      If defense can benefit from "the cloud" for non-sensitive infrastructure then exactly as you say, they should put their effort into defining a spec with detailed QoS and each vendor that wishes to get a piece of the defense cloud pie has to meet the spec, and keep meeting it. But what is this idiocy about classified material in the cloud? It will go horribly wrong. It will. It will. It will.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
    15. Re:Oracle might actually have a point here. by luis_a_espinal · · Score: 1

      I'm on the fence here. I do think Oracle is in the right (Obi Wan's "from a certain point of view.") Such a 10B monopoly cannot be allowed to happen.

      AWS and Azure each do over $20B a year (and growing), adding $1B a year more to either one will not create a monopoly.

      I am talking about a cloud infrastructure monopoly when serving and creating a private, sec-cleared cloud infrastructure for the DoD. Once you (the generic "you") get an exclusive contract to create it all, that is, in effect, a monopoly in that space.

  2. Objectives by jimtheowl · · Score: 1

    From the RFP link:

    "Objectives:
    Acquire a worldwide, highly available, exponentially elastic, secure, resilient cloud computing and storage environment that seamlessly extends from the homefront to the tactical edge." ..

    Maybe it was the 'exponential elasticity', or perhaps the DOD felt like Oracle didn't "extend to the tactical edge" enough.

    1. Re:Objectives by gtall · · Score: 1

      I suddenly feel like I want to puke me guts out reading those Objectives.

      My prediction is that DoD will go with Azure so they can have Powerpoint Parties and wallow in meaningless slides...but now backed by The Cloud, which MS will convince them will solve their every problem.

  3. Question the Pentagon's use of the cloud by Anonymous Coward · · Score: 5, Insightful

    We need to drill deeper than simply reporting on Oracle's protest, and the politics behind it.

    An independent body of security experts should study the Pentagon's use of the cloud in the first place. Simply by moving to cloud computing, the Pentagon is revealing that they underestimate the cyber espionage capabilities of enemy states, and as in the case of Islamic State or Al Qaeda, stateless enemies.

    The same independent body should also study vulnerabilities inherent in military use of the cloud. In an all out war, the enemy first tries to neutralize the command and control infrastructure of their enemy (us). Simply by using the cloud, we are offering the enemy a single neck to chop off, connecting the brain to the body. A secure military force requires so much redundancy, that the enemy has too many necks to chop off to be a feasible strategy.

    1. Re:Question the Pentagon's use of the cloud by Anonymous Coward · · Score: 2, Insightful

      Simply by using the cloud, we are offering the enemy a single neck to chop off

      Your grasp of the subject matter is woefully inadequate. Stop before someone gets injured.

    2. Re:Question the Pentagon's use of the cloud by Junta · · Score: 2

      Broadly speaking, it's a valid concern that we are eager to put all our eggs into as few baskets as possible, and those baskets will have a lot of mono culture in them.

      An adversary discovers a way to access some key part of the power infrastructure of a brand Amazon uses and knows of a vulnerability that can deal persistent damage? Poof things could grind to a halt inflicting significant economic damage, and using an attack of a nature that has thus far not justified forceful retaliation in scenarios where it has happened.

      Even assuming that from a networking and computer security things were perfect, we still have the reality that a military adversary coordinating an attack on 2 dozen sites could cripple our online infrastructure.

      Our love of making these too big to fail companies not only has regrettable economic repercussions, but leaves our online ecosystem way too fragile.

      --
      XML is like violence. If it doesn't solve the problem, use more.
  4. Two sides to that by raymorris · · Score: 5, Interesting

    I suspect the benefit to splitting things up may be obvious enough that I don't need to state it. On the other hand, over the years I've put a lot of thought into why companies use these clouds, and particularly AWS.

    Years ago I developed a small private cloud using a lot of technology I designed and architected myself, with coding help from my employees and a contractor for the UI. It was mostly about storage, and some really nifty ways of managing virtual machines, but the main cost was storage. Multiple people asked me why we didn't use AWS for storage, so even after I had already looked into AWS I double checked a couple more times. What I found was that their storage was MUCH more expensive than some very solid, very flexible storage built from standard open source Linux storage components (cLVM, etc) and some 16-bay Supermicro chassis. AWS was super expensive for storage, and for virtual machines. So why are so many companies using them so much? Years later, I think I have a couple of answers.

    There are a few reasons, but one is the level of integration of advanced things like auto-scale groups. Even getting just a load balancer working PROPERLY and configuring a static cluster of web servers is tricky normally. More often than not, the server clusters I see people deploy aren't actually clusters at all. They are a screwed up hybrid of a true cluster and a bunch of independent mirrors, which breaks things. AWS gives you a solid cluster in a few clicks. You can the easily save your entire cluster setup to your git repo as a Cloud Formation template.

    The big clouds aren't the best way to get storage, they aren't the best way to run virtual machines, they aren't the best way to run databases. The magic is the integration - with a few clicks you have all the right DNS entries pointed to your new cluster of web servers, which talk to your DB cluster through the Lamda functions, all backed by the magic storage in a seamless way. With a beautiful API for programming it all. That's where the value is, how Amazon brings all these different things together seamlessly.

    Breaking your operations up across a bunch of cloud providers meana giving up this seamless integration, duplicating whole data centers to another physical location with a few clicks, and haing everything still work.

    If you're not going to take advantage of how everything is put together, you may as well save a few bucks and have a rack full of Supermicro gear on premises.

    1. Re:Two sides to that by Anonymous Coward · · Score: 2

      It depends on economy of scale. For a small company you are probably correct. As a larger, global company with multiple datacenters around the world we have done the cost comparison multiple times (about once a year for 5 years) and on-prem/private cloud was cheaper every time.

    2. Re:Two sides to that by PixetaledPikachu · · Score: 1

      The reality is public cloud is easy, relatively reliable, and despite your assertion, it is usually significantly cheaper than on-premises, I noticed you didn't include rack space, building power, air con, maintenance, staff etc to run the hardware when you mentioned your comparison, when you do unless you are incredibly efficient it is nearly impossible to match AWS or Azure prices.

      On top of that you've got to deal with infrastructure lifecycle, dealing with EOSL appliances, refreshing your infrastructure and phasing out the old ones, upgrading hypervisors, and proposing budget for those things to managements who don't understand that infrastructure lifecycle is a never ending process, who don't understand unless you sync their business projects the year before so that we can invest in hardware before hand, hardware delivery would take 4 to 6 weeks With cloud, assuming it's applicable, you just need to make sure that the business people factor in the cloud opex into each of their projects.

    3. Re:Two sides to that by luis_a_espinal · · Score: 1

      It depends on economy of scale. For a small company you are probably correct. As a larger, global company with multiple datacenters around the world we have done the cost comparison multiple times (about once a year for 5 years) and on-prem/private cloud was cheaper every time.

      That's been my experience as well. I know for a fact and experience that large, global companies like NTT, ECB or CBS have hundreds of thousands of systems (computers, routers, gateways, etc) in-premise, their nature and business rationale being such taking them to the cloud makes no sense (financially and operationally.)

      For some ops, it totally makes sense to go to the cloud.

      For others, it totally makes sense *NOT TO*.

    4. Re:Two sides to that by datavirtue · · Score: 1

      Agreed. Most IT shops spend a lot of time dealing with things that add zero value. The cloud services introduce a much better opportunity cost in that your people can focus on design of infrastructure and applications instead of maintenance of infrastructure. Maintenance is a cost, design is an opportunity and one that is a lot more flexible in the cloud since you are not tied to a major capital purchase that is next to impossible to change tomorrow.

      --
      I object to power without constructive purpose. --Spock
    5. Re:Two sides to that by Tough+Love · · Score: 1

      Why do you not question the idiocy of entrusting classified assets to a public cloud?

      --
      When all you have is a hammer, every problem starts to look like a thumb.
  5. Re:Oracle seems to be right (can we say that?) by ShanghaiBill · · Score: 4, Insightful

    This is the first news about Oracle doing something that I think might not be evil that I have seen.

    Being right is not the same as being good. Oracle is right, but for reasons of pure self-interest. They got a late start in cloud services, lack scale, and are still sucking hind tit, so they have no hope of getting a big winner-takes-all contract. If they can force the DoD to break it up, they have a good chance of getting some portion today, and even more in coming years.

  6. Oracle is weveel. by harvey+the+nerd · · Score: 2

    JEDI banishes the Dark Overlord.,,

  7. No thanks Oracle by eclectro · · Score: 4, Informative

    Bad memories die hard, and your solutions trainwrecked Oregon's healthcare website when other states were able to accomplish more for far less and in a far more timely manner.

    Good thing I'm not in congress, I'd find any way I could to prevent you from bidding on a contract that was critical for our national defense.

    Just get lost already, and let the companies that know what they're doing get the job done.

    --
    Take the cheese to sickbay, the doctor should see it as soon as possible - B'Elanna Torres, "Learning Curve"
  8. I don't trust any of them by Tough+Love · · Score: 1

    I don't trust any of them, do you? Just to be clear: Microsoft getting the whole defence contract would be a disaster. Apple getting the whole defence contract would be a disaster. Oracle getting the whole defence contract would be a disaster. Google getting the whole defence contract would be a disaster. Amazon getting the whole defence contract would be a disaster. Listed in order from most disastrous to... still disastrous? What the hell.

    What I want to know is, what is the size of the kickback? To whom will it be paid? In what form? Who has already promised to pay it? To be continued.

    --
    When all you have is a hammer, every problem starts to look like a thumb.
    1. Re:I don't trust any of them by dwywit · · Score: 2

      Splitting things between different contractors is just going to end up with people pointing fingers at each other.

      "It's not out fault, talk to {other provider}"

      At least with a single provider you can pin them down.

      --
      They sentenced me to twenty years of boredom
    2. Re:I don't trust any of them by DarkOx · · Score: 1

      I am not so sure. There are lots of problems with moving military applications to the cloud. I don't think those can be understated. However one of the biggest problems our government has today is there are to many players in literally every activity it performs. Two men can keep a secret when one of them is dead! Not having this go to all one vendor means multiple parties will have access to the hardware that has tokens and authentication information. Multiple parties will be in a position to observe and gather sigint etc. Frankly Every single one of those parties is already to big and to international IMHO to be able to partner with the DOD in something like this! That said I am with the DOD on this one multiple party would be worse in terms of being able to monitor and control data.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    3. Re:I don't trust any of them by Junta · · Score: 1

      Exactly my concern...

      It's one thing if the argument is 'you need to award several smaller *independent* providers', so that a total failure of one vendor is isolated and you can keep going, great I wholeheartedly agree.

      It's another if the argument is (and I think this is Oracle's hope) 'you need to compose the solution of many providers at different layers', so that a total failure of any of them is guaranteed to knock everything out.

      --
      XML is like violence. If it doesn't solve the problem, use more.
    4. Re:I don't trust any of them by gtall · · Score: 1

      I doubt there is a kickback, it is too open to the GAO and auditing. The DoD is finishing up their first ever audit, that will now become fodder for GAO oversight as it will now be an ongoing audit exercise.

      The problem with not going with a mono culture is that congress critters will then use DoD as a punching bag for declaring that it is wasting money attempting to get all the cats herded together. And the extra money it would take to herd those cats will be significant.

      Balanced against that is the security issues with a mono-culture. However, Congress doesn't get security, and certainly the current alleged Administration does not either. DoD does but it is a vast enterprise and securing the entire thing as a question isn't, to reuse Pauli's phrase, not even wrong.

    5. Re:I don't trust any of them by Tough+Love · · Score: 1

      I doubt there is a kickback, it is too open to the GAO and auditing.

      You are a trusting soul. Look at how Trump flouts the law in broad daylight. There are ways, there are means. Not all payback is in dollars (but most is.)

      --
      When all you have is a hammer, every problem starts to look like a thumb.
  9. Re: Trump files complaint against treason noose by Anonymous Coward · · Score: 1

    Donald TRUMP cut in line at the supermarket!

  10. Comment removed by account_deleted · · Score: 1

    Comment removed based on user account deletion

  11. Dead company walking. They just don't realize it by Anonymous Coward · · Score: 2, Insightful

    Dead company walking. They just don't realize it.
    Their clients hate Oracle. If they could, they've fire them today.
    Oracle has been a bully, especially on cloudy stuff.

  12. And... by erp_consultant · · Score: 2

    If Oracle were awarded the contract instead then Amazon or Microsoft would just sit by idly? Of course not. They would launch lawsuits of their own. This story has nothing to do with what's best for the federal government and everything to do with endless corporate greed.

    Obviously Oracle is fighting to prevent a competitor from getting a foot in the door. They want the whole pie for themselves, just like Microsoft and Amazon do.

  13. Oracle warns about vendor lock in. by kiviQr · · Score: 1

    Oracle warns about vendor lock in - good one. (only if you choose someone else).

  14. DoD response by almitydave · · Score: 1

    The DoD responded to Oracle:

    "I am not altering the deal. Pray I alter it further."

    --
    my, your, his/her/its, our, your, their
    I'm, you're, he's/she's/it's, we're, you're, they're
  15. Same thing happened before by sentiblue · · Score: 1

    About 5 years ago, the CIA gave a computing contract to AWS and IBM did the same challenge. The agency did aknowledge IBM's challenge and opened up a bidding prodess which AWS won anyway. Only few months after that I was offered an interview with AWS which requires that I secure a high level security clearance certification. I had no doubt that this was the work to be done at the agency, but I did have one disqualification for security clearance so I didn't even bother with the interview.

    Now back to Oracle... they've always been a predator in this world. They don't cry when they're the single vendor of a lucrative contract but if someone else gets anything, they bitch. They keep raising licensing costs and changing licensing models on existing customers knowing that it takes them years to leave. Some of the customers are so much built on 11g that they can't leave at all. The most funny/silly thing I've seen with them is that Ellison said Google stole Android from them LMFAO!!!

    1. Re:Same thing happened before by oh_my_080980980 · · Score: 1

      Umm no ass-hole. Ellison claimed Google took stuff from Oracle. Which is true. As a court ruled: Google owes Oracle for unfair use of Java in Android. https://www.androidcentral.com...

      Google was unable to develop their own language for Android so they used Java, hoping to tap into that eco system. Which is ironic since Google also berated the Java language.

  16. Re:typical by ausekilis · · Score: 1

    any time big gov't contracts are awarded it's typical for non-selected vendors to launch formal protests

    See the KC-135 kerfluffle between Boeing, Lockheed and Northrop Grumman.

  17. Three person company, scales from there by raymorris · · Score: 1

    I started my cost comparison based on a three-person company renting a quarter rack (11U) duplicatds in two data centers. 6U was 32 hard drives, 3U was CPU, and the remaining 2U was the network switch and IP KVM.

    Even at that level AWS was much more expensive, mostly due to the man power of occasionally maintaining it. Economies of scale make your own hardware cheaper as you scale up.

    1. Re:Three person company, scales from there by raymorris · · Score: 1

      >> I started my cost comparison based on a three-person company renting a quarter rack (11U) duplicated in two data centers. ... 32 hard drives

      > you had a non redundancy

      Let me guess, with your keen eye for detail, you're a Bernie Sanders supporter?

      What exactly is confusing to you about "DUPLICATED in TWO data centers"? How do you think 32 drives per unit would be configured? Perhaps as a RAID, aka Redundant Array of Independent Drives?

  18. that's a different thread. Trusting 2 worse than 1 by raymorris · · Score: 1

    That may be a different thread since this article is about whether to put it on one cloud or two.

    I suppose putting classified info on two public clouds is twice as dumb as putting it on one public cloud.

  19. Re:that's a different thread. Trusting 2 worse tha by Tough+Love · · Score: 1

    And putting classified assets into any cloud is just asking for it. Don't let this one-or-two-vendor legerdemain distract you from the central question.

    --
    When all you have is a hammer, every problem starts to look like a thumb.