The EBS Security FAQ is your starting reference for finding information for questions about security guidelines, security features, certifications, encryption, or other security-related topics.
The content in the EBS Security FAQ is updated on a regular basis. We highly recommend that you subscribe to receive notifications when this MOS note is updated.
As you read through the updated document, please let us know if there are additional questions that we should consider adding.
The following is a summary of the most recent update to the FAQ:
The questions in the FAQ are organized in the following sections and subsections:
Section 1: Oracle E-Business Suite Secure Configuration and Architecture
1.1 General Guidelines
1.2 Database Patching and Configuration
1.3 HTTP Security Headers and Cookie Attributes
Section 2: Oracle E-Business Suite and Auditing
Section 3: Oracle E-Business Suite Access and Authentication
3.1 Access and Separation of Duties
3.2 Authentication and Single Sign-On
Section 4: Oracle E-Business Suite Data Encryption and Data Protection
Section 5: Oracle E-Business Suite Connection Encryption
5.1 SSL and TLS Concepts
5.2 Trusting Certificates
5.3 Configuring TLS for Connections to Oracle E-Business Suite
5.4 POODLE, FREAK, and DROWN Vulnerabilities
Examples of questions answered in the updated EBS Security FAQ include:
FAQ: Oracle E-Business Suite Security (MOS Note 2063486.1)