Tuesday, 7 May 2013

Top 6 mistakes in IBM Business Process Manager installations

Let's play a game of word association. What subject comes to mind with the words "engaging" and "terrifying"? Whatever you are thinking, I suspect it wasn't IT security. Yet those very words describe J Keith Wood and Jens Engelke's new IBM Redbooks publication. In it, they share their experiences of working with IBM customers around the world on securing IBM Business Process Manager solutions. Security pitfalls are everywhere and the stakes could not be higher.

This blog post is part of a series about common Business Process Manager security holes. In this post, we focus specifically on IBM Business Process Manager installation security. Much more information can be found in their Redbooks publication: IBM Business Process Manager Security: Concepts and Guidance.

1. Faith in your firewall
2. Failure to use SSL between Business Process Manager and the database server
3. Failure to encrypt data at rest
4. Failure to use SSL between Process Server and Process Center
5. Overuse of default BusinessProcess Manager accounts
6. Overuse of trust in certificate authorities

No comments:

Note to self - use kubectl to query images in a pod or deployment

In both cases, we use JSON ... For a deployment, we can do this: - kubectl get deployment foobar --namespace snafu --output jsonpath="{...