Use TLS
Oracle strongly recommends configuring Oracle WebLogic Server to use TLS and accessing the Oracle Empirica Signal software using only TLS connections. For more information, see the Installation and Upgrade Instructions.
To ensure that your use of TLS is secure, perform the following steps:
- Disable the use of vulnerable TLS protocols by adding the following
JVM option to the JAVA_OPTIONS settings in the
setDomainEnv.shfile, for example:-Dweblogic.security.SSL.minimumProtocolVersion=TLSv1.2You can find the
setDomainEnv.shfile in a location such as: /u01/app/oracle/Middleware/user_projects/domains/empirica/bin/setDomainEnv.sh - Enable only strong ciphers in the Oracle WebLogic Server
config.xmlfile by listing only strong ciphers in the SSL section of the file.For more information, see the Open Web Application Security Project website:
https://cheatsheetseries.owasp.org/cheatsheets/Transport_Layer_Security_Cheat_Sheet.html