Our Enterprise is using Oracle Application Server in front of oracle database. we using oracle wallet manager(Installed with Oracle client 10) to create self sign certificates. as you may know wallet manager in v 10 has some limitation in key size or ... (i don't know exactly the limitation and i hope you could help me on it ).
when we want to issue a certificate at first we create a certificate request with wallet manager and then issue based on certificate in windows server CA.
now i have some question: 1- what exactly indicate the ssl/tls version? i mean the web server, client or the certificate? is this possible the web server support the tls v1.0 but the certificate doesn't?
2- what are the limitation of using wallet manager in V10 to issue the self sign certificate?
3- is there another way to create self sign certificate without wallet manager V10?(when i try the newest versions oracle application failed to open a certificate)
4- and my most important question: can i stop poodle attack in oracle application? (i red somewhere that poodle attack doesn't apply in TLSV1. so i guess its better to ask my question this way: does oracle application server support the TLSV1? )
i really appreciate any sort of help. thank you.
Aucun commentaire:
Enregistrer un commentaire