Hello, I have a client, and I'm looking for a solution for a problem he has.
The client has a lot of field agents, and would like to make information
available to them whever they go over the internet. But, the information
is sensitive, so just putting it up on a WWW server isn't enough.
They have the sensitive information on an Oracle server that is entirely
within the company. All the agents have SecurId cards. What they would
like is to have web browsers do encrypted SSL/HTTPS connections to a WWW
server, authenticate with SecurId, and do the queries that way. The WWW
server is a front end Oracle querying device that talks encrypted SQLNET
back to the server that is safe inside of the company. This is how it
looks:
+------+
| | .
| | . Internet
| | .
+------+ .
| .
| .
| ........> HTTPS traffic
+------+ +-----+
| XXX |-----------| | WWW server/Oracle client
+------+ +-----+
| .........
| .
+------+ .
| | . Inside Oracle Server
+------+ V
Oracle traffic to server
What I need is that box marked XXX
What I need are:
1: HTTPS to make sure no one sniffs the data
2: SecurId authentication to make sure only authorized parties get
access to the data
3: Ability to proxy SQLNET when encrypted, and preferabily when SQLNET
is running multithreaded.
4: I prefer a proxy/application firewall, but might consider a packet
filter if no application firewall can be found.
I've looked at a few companies, and no one seems to be able to do everything.
Thanks in advance.
|
|
