A Novel Security Integration for Vulnerability Avoidance in Enterprise Cloud Applications (CloudERP)

Studies have shown that some existing enterprise applications including bussiness ERPs, Social Networks, etc implements a single layer security scheme which can easily be hacked. Also, these applications suffer from multiple security vulnerabilities, including SQL Injection Attacks (SQLIA), Social engineering, spoofing, etc. For most mission critical enterprises, their organizational critical assets can be dumped in an ERPs, which needs to be protected very adequately. This paper then develops a Cloud based Enterprise Resource Planning System (CloudERP) while reengineering a second (Layer-2) security appliance called Advanced Encryption Validation Key (AEVK) which is an authentication scheme based on Advanced MD5 Encryption (A-MD5) algorithm. The proposed approach is expected to replace the overall process architecture and security integrations in existing ERP vendor systems owing to its computational as well as security features. Our methology involved the use of Netbeans 7.0.1, JAVA Server Page and MySQL tools in this work.