THE CHALLENGE The client uses an electronic portal called MyAccess that allows its staff to view and use Enterprise Applications mapped to one’s roles and responsibilities. MyAccess provides a single point access. Following challenges were identified by the client with MyAccess – Dependency on the Adobe Flash plug-in Incompatibility with mobile browsers Dependency on an internal Content Management System Dependency on Oracle ERP’s up-time for user and role information Inefficient configurability of the portal content and dependence on role-based administration Low Availability Inaccessibility with screen readers Inability to gather usage statistics for profile tracking and monitoring THE SOLUTION M&S built … Read More
Oracle SSL POODLE Vulnerability Patching
The Problem A state government organization was running an Oracle 10g Internet Application Server (iAS, aka OAS) environment with Oracle APEX 4.x, Oracle Forms 10g, and Oracle Reports 10g. In late 2014, an SSL mand-in-the-middle vulnerability was found in environments running SSL in Oracle iAS 10g. The client needed urgent help to patch the environment to protect against the POODLE vulnerability. The Solution Since this was the fourth or fifth time M&S had been protecting environments through patches and configuration, the project was very familiar to M&S consultants. M&S understood the environment and architecture and laid out a plan to … Read More