General Security Principles

This section provides general security recommendations for securing any application.

The most critical resource to protect is the Oracle Clinical database, which contains information that is both sensitive and critical to the performance of your business. Oracle recommends that you protect most of your computing resources from unauthorized access, manipulation, or destruction from both internal and external parties.

For Web enablement, you must protect resources from unauthorized access via the Internet. In addition, access to highly confidential data or strategic resources should be available to only a few trusted users or system administrators.

For more information, see:

• Restrict Network Access to Critical Services
  
• Monitor System Activity
  
• Set Up a Change Management Process
  
• Change Passwords Periodically
  
• Keep Passwords Private and Secure
  
• Use Profiles
  
• Lock Computers to Protect Data
  
• Close All Open Ports Not in Use
  
• Secure the Environment
  
• Provide Only the Necessary Rights to Perform an Operation