I am please to announce the release of the paper “Strong Authentication and Security for Oracle Application Express“.
Oracle Application Express is a simple yet powerful RAD/web application framework that can address specific rapid application needs, from small businesses to larger enterprises. However, it is missing an out-of-the box strong authentication functionality, such as One Time Passwords (OTP) keys or smart card. Moreover, the administrative interface and all hosted applications are potentially reachable by an attacker. My publication proposes an architecture to fill these gaps, providing an highly secure environment to run your own business applications.
Preface was gently provided by Mark Shuttleworth, founder of Ubuntu, Canonical and Thawte.
The paper is freely available from the following URL:
http://www.gpaterno.com/publications/2011/strong_auth_sec_oracle_apex.pdf

2011-03-07