You are previewing Oracle E-Business Suite Security.
O'Reilly logo
Oracle E-Business Suite Security

Book Description

Implement and Maintain Rock-Solid Security for Oracle E-Business Suite Secure Oracle E-Business Suite within organizations and across the Internet using the in-depth guidance of this comprehensive volume. Oracle E-Business Suite Security covers everything from key infrastructure, technical, and functional information to cutting-edge auditing, cryptography, and VPD techniques. Real-world scenarios and insightful tips throughout illustrate how to hacker-proof, audit, and troubleshoot your system. Plus, you’ll get critical information on international regulatory standards, access to online code, and a blueprint of deployment topology.

Table of Contents

  1. Cover Page
  2. Oracle E-Business Suite Security
  3. Copyright Page
  4. About the Author
  5. Contents
  6. Foreword
  7. Acknowledgments
  8. Introduction
  9. 1 Security Fundamentals for Oracle E-Business Suite
    1. Security Foundations for Oracle E-Business Suite
      1. Oracle E-Business Suite Security Policy
      2. Threat Model
      3. Business Continuity Plan
    2. Oracle E-Business Suite Primer
      1. Evolution of Oracle E-Business Suite Security
      2. Oracle E-Business Suite Technical Components
      3. Additional E-Business Suite Implementation Security Considerations
    3. Summary
  10. 2 Oracle E-Business Suite Security Infrastructure
    1. Firewalls
      1. SQL*Net Firewall Consideration
      2. Discoverer Plus
    2. Intrusion Detection and Denial-of-Service Monitoring
      1. Intrusion Detection
      2. Denial of Service
    3. Load Balancing
    4. Secure Sockets Layer (SSL)
      1. Introducing SSL
      2. SSL Configuration Options
      3. SSL Implementation Approach
    5. Environment Components
      1. Hardening Server Environments
      2. Additional Network Components
    6. Summary
  11. 3 Securing Oracle E-Business Suite Technical Components
    1. Oracle E-Business Suite Technical Security Components
      1. Oracle E-Business Suite Security User and Password Control
      2. Workflow Approval Authentication
      3. Supplied Oracle E-Business Suite Users
    2. Oracle E-Business Suite Application-Tier Security
      1. Oracle E-Business Suite Application-Tier Hardening
      2. Application-Tier Additional Hardening
    3. Oracle Database Security
      1. Oracle E-Business Suite Database Hardening
      2. Oracle Database Cryptographic Functions
    4. Oracle Virtual Private Database
      1. Implementing Virtual Private Database
    5. Summary
  12. 4 Securing Oracle E-Business Suite Functional Components
    1. Oracle E-Business Suite Product Security
      1. Common Foundation Security Features
      2. Human Resources Management System
      3. General Ledger Security
      4. Fixed Assets Security
    2. User Management
      1. Role Based Access Control
      2. User Provisioning
      3. Oracle Application Function and Data Security
      4. User Assistance
    3. Regulator Compliance
      1. Sarbanes-Oxley Act of 2002
      2. Health Insurance Portability and Accountability Act of 1996
      3. Regulator Requirements
    4. Oracle E-Business Suite Auditing
      1. User Activity Auditing
      2. Data Auditing
    5. Summary
  13. 5 Oracle 10g with Oracle E-Business Suite
    1. Oracle Application Server 10g
      1. Deployment Overview
      2. Advance Topology Deployment
      3. Installation
      4. Troubleshooting Oracle E-Business Suite–to-OID Replication
      5. Oracle Certificate Authority
      6. Oracle Human Resources Integration
      7. LDAP Provisioning
      8. Java DIP Tester
    2. Oracle Database 10g
      1. Installation Topology
      2. Data Security
      3. Oracle DBMS_CRYPTO
      4. Oracle Auditing
    3. Implementing Single Sign-On
      1. Deployment Topologies
      2. Installation of Windows Native Authentication
      3. Troubleshooting and Tips
    4. Summary
  14. 6 Administration and Monitoring
    1. Monitoring Strategy
      1. Strategy Components
    2. Monitoring
      1. Security Alerts
      2. User Monitoring
    3. Application Server Monitoring
      1. Apache Log File
      2. SSL Certificates Expired
      3. Internet Domain Changes
    4. Infrastructure Monitoring
      1. Port Scanning/Access
      2. Infrastructure Monitoring Checklist
      3. Penetration Testing
      4. Bandwidth Monitoring
    5. Oracle E-Business Suite Monitoring
      1. Restricted Page Access
      2. Concurrent Manager Output Encryption
    6. Error or Unauthorized Access Attempt
      1. Log File Monitoring
      2. What Is the Latest File?
    7. Administration Strategy
    8. Software and Data Administration
      1. Security and Patch Applying
      2. Purging Data
      3. System Profile Changes
    9. Technical Component Administration
      1. Environment Usage
      2. Access Control
    10. Oracle Applications Manager
      1. Host Configuration
      2. Support Cart Contents
    11. Summary
  15. 7 Deployment of Oracle E-Business Suite
    1. Requirements
      1. Application Implementation Methodology
      2. Business Requirements
    2. Application and Technical Architecture
      1. Technical Architecture Questionnaire
    3. Internet Deployment
      1. Outbound Internet Access
      2. SSL Access Sites
      3. Tracing iProcurement
    4. Common Infrastructure
      1. Working with the Infrastructure
    5. DMZ (De-Militarized Zone)
      1. Reverse Proxy Setup
      2. Additional Hardening Methods
    6. Oracle Application Tier with Oracle E-Business Suite
    7. Single Sign-On and Directory Integration
      1. Oracle SSO and LDAP Deployment
      2. WNA Configuration
      3. Oracle Internet Directory
    8. Database Server Tier
      1. Database Auditing
      2. Encryption Component
      3. Validation Process
    9. Client Browser Implementations
    10. Functional Requirements (Security)
      1. Implementing Chart Account Access Criteria
      2. Restricting Access to Sensitive Customer Data
      3. Implementing a Global Financial System
      4. Auditing User Activities
    11. Summary
  16. A Oracle E-Business Suite Security Features
    1. Oracle Wallet Manager
    2. Example of Hardening Oracle9iAS
      1. Virtual Hosts Within Reverse Proxy
    3. Useful Oracle Database SQL Scripts
    4. Useful Operating System Commands
    5. Windows Tools for Single Sign-On Investigation
    6. Important Security Elements of AutoConfig
      1. Ports Used Within Oracle E-Business Suite
      2. Protocols Used Within Oracle E-Business Suite
      3. Database Connection in Oracle E-Business Suite
      4. URLs for Oracle E-Business Suite
      5. Hosts and Domains Within Oracle E-Business Suite
    7. Oracle E-Business Suite Configuration
    8. Oracle Label Security
      1. Implementing a Virtual Private Database
    9. URL Firewall Configuration
    10. Summary
  17. Index