Information Technology Reference
In-Depth Information
The
Single Sign-On
(
SSO
) capability provides the ability to seamlessly authenticate
across multiple applications within an organization. This is especially useful when a
user's security profile needs to be carried across applications.
The
Oracle Virtual Directory
(
OVD
) provides the capability to virtualize
Light-
weight Directory Access Protocol (LDAP
) and provide multiple sources for au-
thentication. This plays a pivotal role in federated security situations where authen-
tication across organizational boundaries needs to be carried out.
OVD provides private database functionality. This provides granular security of data,
and it is especially useful in situations where
Personal Identifiable Information
(
PII
) needs to be secured.
Message line and on-the-wire encryption capabilities are provided by OIM. There are
multiple options for encryption, and these policies can be applied in any combination
as needed by the business process.
Oracle Fusion Applications primarily use roles to provide application authorization.
However, roles are not limited to access and authorization alone. They also provide
data segregation and access controls around data privacy. Oracle Fusion Applica-
tions are designed to be multitenant applications. Hence, data partitioning is a vital
feature of the application. Oracle Fusion Applications use a combination of roles and
features, such as
Multi Org Access Control
(
MOAC
), to ensure that data access
is segregated based on the user type. This is vital for the application's end users as
well as for security compliance.
Search WWH ::
Custom Search