Use of TLS
Oracle strongly recommends configuring WebLogic to use TLS and accessing the Empirica Signal software using only TLS connections. For more information, see the Installation Guide.
To ensure that your use of TLS is secure, perform the following steps:
- Disable the use of vulnerable TLS protocols by adding the following JVM option to the JAVA_OPTIONS settings in the setDomainEnv.sh file, for example:
-Dweblogic.security.SSL.protocolVersion=TLS1
You can find the setDomainEnv.sh file in a location such as:
/u01/app/oracle/Middleware/user_projects/domains/empirica/bin/setDomainEnv.sh
- Enable only strong ciphers in the WebLogic config.xml file by listing only strong ciphers in the SSL section of the file.
For more information, see the Open Web Application Security Project website:
http://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet#Rule_-_Only_Support_Strong_Cryptographic_Ciphers