1. Security Guide
  2. Installing and configuring the Oracle Empirica Signal software
  3. Use TLS

Use TLS

Oracle strongly recommends configuring Oracle WebLogic Server to use TLS and accessing the Oracle Empirica Signal software using only TLS connections. For more information, see the Installation and Upgrade Instructions.

To ensure that your use of TLS is secure, perform the following steps:

  • Disable the use of vulnerable TLS protocols by adding the following JVM option to the JAVA_OPTIONS settings in the setDomainEnv.sh file, for example:

    -Dweblogic.security.SSL.minimumProtocolVersion=TLSv1.2

    You can find the setDomainEnv.sh file in a location such as: /u01/app/oracle/Middleware/user_projects/domains/empirica/bin/setDomainEnv.sh

  • Enable only strong ciphers in the Oracle WebLogic Server config.xml file by listing only strong ciphers in the SSL section of the file.

    For more information, see the Open Web Application Security Project website:

    http://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet#Rule_-_Only_Support_Strong_Cryptographic_Ciphers

Parent topic: Installing and configuring the Oracle Empirica Signal software