Monthly Archives: January 2015

DOAG 2014 Konferenz: IT-Sicherheit und OFM: Eine Herkulesaufgabe?

Es gab am 20. Juni in Nürnberg den DOAG 2014 Konferenz. Mein Kollege Frank Burkhardt und ich haben dort einen Vortrag über „IT-Sicherheit und OFM: Eine Herkulesaufgabe?“. Hier finden Sie unser Abstract und unsere Präsentation:

Die Anforderungen, die heute an IT-Sicherheitsexperten gestellt werden, erinnern mitunter an die scheinbar unlösbaren Aufgaben des Herkules in der griechischen Sage. Doch nicht jeder Security-Spezialist ist ein IT-Muskelmann. Und allein die traditionellen IT-Sicherheitsansätze und Maßnahmen reichen nicht aus, um neue technische aber auch organisatorische Fragen zu beantworten. Welche Lösungsansätze bietet Oracle aus diesem Dilemma? Nach einer kurzen Einführung in die Problematik stellen die Referenten die Security-Konzepte von Oracle vor und richten danach einen besonderen Fokus auf Oracle WebLogic Server und Oracle Plattform Security Services (OPSS).

Diese Themen stehen dabei Mittelpunkt:

  • Herausforderungen der IT-Sicherheit in weltweit vernetzten Systeme
  • IT-Sicherheitsarchitektur und der Ansatz von Oracle
  • Oracle Fusion Middleware und Bausteine der Sicherheitstechnologie von Oracle: WLS, OAM, OID, OVD,  WebGate

Sichere Systeme: Best Practice und Erfahrungsberichte zu Authentication, Authorization, Single-Sign-On (SSO), Secure Socket Layer (SSL) und Security Assertion Markup Language (SAML)

Link zu unserer Präsentation:

https://modjorg.files.wordpress.com/2015/01/it-security_doag_20141120.pdf

Advertisements

SOA Suite 12c and the OPSS Keystore Service by Adam Desjardin

SOA Suite 12c and the OPSS Keystore Service by Adam Desjardin

SOA Community Blog

clip_image002When working with a colleague on a sample SOA 12c project recently I noticed a change in 12c that I had not seen mentioned anywhere yet. In the sample project we were integrating with the Atlassian OnDemand service in order to provision users for Confluence and JIRA. The integration is performed using a SOAP service over SSL. In this situation, like at many of our customers, we needed to import additional trusted certificates into the trust store in order to make the service call over SSL. At many of our customers this is an internal Root CA they use to sign their own certificates for internal use.

When looking at the default settings of the IntegratedServer in JDeveloper 12c we can now see below that it is configured by default to use the OPSS Keystore Service and not a JKS Trust Store.

You can see above that instead of a…

View original post 200 more words

Cloud Adapter for Salesforce.com – Understanding What It Does & How You Benefit by ITC

Cloud Adapter for Salesforce.com – Understanding What It Does & How You Benefit by ITC

SOA Community Blog

Starting in the 1990’s it became standard operating procedure in all large and even mid-sized companies to use an ERP system such as Oracle E-Business Suite to manage business processes like Order Management, Accounting System or Supply Chain Management, along with the complete sales and revenue cycle from quote-to-order and order-to-cash.

clip_image002However, as recently as only a half-decade ago, those same companies either ran CRM systems completely independently of those ERP solutions or they scarified high quality CRM functionally for a CRM alternative that was “good enough” but integrated easily with Oracle.
However, this began to change at the beginning of the second decade of the 21st century, as companies began dropping their legacy systems and opting to move to SaaS-based CRM solutions such as SalesForce.com. The attraction of solutions such as Salesforce.com is twofold: first, they offer best of breed functionality; second, the SaaS model makes them very…

View original post 189 more words