Mise à jour de sécurité Ovid

15 février 2021

Pour votre information, Ovid fait une mise à jour de sécurité sur sa plateforme OvidSP le 18 février, voir le message du fournisseur plus bas (en anglais). Lors de la connexion à la plateforme, le trafic HTTP sera redirigé vers HTTPS. Cette transition devrait se faire de façon transparente, mais il est possible qu’il y ait un impact sur votre connectivité à la plateforme OvidSP.

Vous pouvez dès maintenant vérifier que votre accès Ovid sera ininterrompu en testant la connexion à la plateforme OvidSP. Veuillez accéder aux systèmes informatiques de votre établissement comme vous le faites normalement pour accéder à Ovid (vous devez être sur un poste informatique dans votre établissement), puis connectez-vous à https://ovidsp.ovid.com

Si vous pouvez vous connecter à vos ressources Ovid, aucune modification n’est nécessaire pour garantir un accès ininterrompu. Si vous ne pouvez pas vous connecter à vos ressources Ovid via https://ovidsp.ovid.com , veuillez transmettre ce message à votre service informatique afin qu’il s’assure que votre serveur fonctionne sous https, qu’un certificat valide est en place et que votre configuration de serveur est définie sur https: // ovidsp .ovid.com.

 

Ovid Security Update

Dear Ovid Customer:

As a part of our ongoing commitment to improving the security of your information and Ovid, we will begin to redirect all HTTP login traffic to HTTPS on 18th February at 10am ET (view your local time).
This means that if you go to http://ovidsp.ovid.com, our systems will automatically redirect your request to https://ovidsp.ovid.com.

Will I be unable to access Ovid after this change is made?
You can ensure that your Ovid access is uninterrupted by testing now. Please access your institution’s systems as you normally do to access Ovid and then connect to https://ovidsp.ovid.com. If you can connect to your Ovid resources then no changes are needed to ensure uninterrupted access. If you can’t connect to your Ovid resources via https://ovidsp.ovid.com, please ensure that your proxy is running under https, a valid certificate is in place, and your proxy configuration is set to https://ovidsp.ovid.com.

What EZProxy setting should I use?
For all proxies please ensure that your proxy is running under https, a valid certificate is in place, and your proxy configuration is set to https://ovidsp.ovid.com.
You can find an example of EZProxy settings here.

Does my IT team need to be made aware of this change?
Yes, we recommend that you share this information with your IT team. Changes may not be required, however changes to types of connections are typically of interest to IT teams. A shift to more secure connection types is also typically viewed as highly favorable as organizations across the globe protect their data and systems.

Will this change impact connections via APIs?
No, this change will not affect any API traffic.

What if I access Ovid via a third party product?
If you access Ovid via a third party product, please test your access via that product. You may need to connect to that product as you normally would and capture the Ovid URL to which you are redirected from the URL bar. Once you have that URL, note if the connection is to http://ovidsp.ovid.com or https://ovidsp.ovid.com. If it is http, then edit the URL so that it is https and test access. If you can access your Ovid content, then no changes will be needed to ensure your access remains. If the URL is already set to https://ovidsp.ovid.com and you can access your Ovid content, no changes will be needed. If the third party product is displaying your Ovid content in an iframe, please ensure that the third party system is being loaded on an https URL.

If you are unable to access, please ensure the third party system is configured to support SSL traffic via https.

Should you experience any issues please contact us immediately.

Feel free to contact Customer Support with any questions by sending an email to support@ovid.com.