Password Decryption Risk for Oracle E-Business Suite - ERP Risk Advisors
899
post-template-default,single,single-post,postid-899,single-format-standard,ajax_fade,page_not_loaded,,qode_grid_1300,footer_responsive_adv,hide_top_bar_on_mobile_header,qode-child-theme-ver-1.0.0,qode-theme-ver-16.7,qode-theme-bridge,wpb-js-composer js-comp-ver-5.5.2,vc_responsive
 

Password Decryption Risk for Oracle E-Business Suite

Password Decryption Risk for Oracle E-Business Suite

Password Decryption Risk for Oracle E-Business Suite
Unsecured passwords can allow a hacker to access application and database accounts by decrypting their passwords…
We had a great webinar in May in conjunction with Steve Kost of Integrigy.  We covered the risks related to the decryption of passwords.  Three questions for you:
  • Have you applied the new hash password scheme?  If you aren’t sure, read more about it in MOS Notes 457166.1 and 1084956.1).
  • Do you consider the column that hosts the password data in the FND_USER table as ‘sensitive data.’
  • Is your password length for the applications and database less than eight digits?

If you have answered ‘no’ to any of these questions, you need to see our recorded webinar based on the webinar titled “Account Password Decryption, Threat Explored.”  This webinar along with others we have done over the past few years can be accessed at: http://www.erpra.net/WebinarAccessForm.html
Jeffrey T. Hare
jhare@erpra.net

Jeffrey Hare, CPA CIA CISA is the founder and CEO of ERP Risk Advisors. His extensive background includes public accounting (including Big 4 experience), industry, and Oracle Applications consulting experience. Jeffrey has been working in the Oracle Applications space since 1998 with implementation, upgrade, and support experience. Jeffrey is a Certified Public Accountant (CPA), a Certified Information Systems Auditor (CISA), and a Certified Internal Auditor (CIA).

2 Comments
  • Alison Benson
    Posted at 17:32h, 29 November

    It was nice to read this post.Enterprise applications are typically designed to interface or integrate with other enterprise applications used within the organization, and to be deployed across a variety of networks (Internet, Intranet and corporate networks) while meeting strict requirements for security and administration management.This post will be very helpful to know about password decryption risk.

  • microsoft dynamic
    Posted at 18:39h, 03 October

    This article can be extremely helpful for everyone who wants to know about password decryption risk and it can eliminate some unsecured passwords which allow a hacker to access application and database accounts. Thank you so much for sharing 🙂

Post A Comment