Enabling Encryption of Network Traffic

If a Siebel CRM deployment over the Internet does not implement encryption between users' browsers and the Web server or between the Web server and application server, then such a deployment is susceptible to network sniffing and compromising of sensitive data. Implementing encryption for all network traffic and for all sensitive data prevents network sniffing attacks.

In Siebel CRM, stored data can be selectively encrypted at the field level, and access to this data can be secured. In addition, data can be converted into an encrypted form for transmission over a network. Encrypting communications safeguards such data from unauthorized access.

The following figure shows the types of encryption available for communications within the Siebel environment. Encryption protects confidentiality along the entire data communications path, from the Web client browser to the Web server, to the Siebel Server, and back again. It is recommended that TLS 1.2 encryption is enabled where possible.

This figure shows that communications encryption is available in the following areas within the Siebel environment:

1. Between client browser to Web server

2. Between Web server to Siebel Server

3. Between Siebel Server to database

4. For database storage

For additional information on encryption options available, see the following topics:

• Enabling Encryption Between the Web Client Browser and Web Server

• Enabling Encryption Between the Web Server and Siebel Server

• Enabling Encryption Between the Siebel Server and Siebel Database

• Enabling Encryption for Security Adapters

• About Using TLS with Siebel Enterprise Application Integration (EAI)