Security Software

Hi,

I would like to know how we could stregthen our oracle SSO authentication for our portal application. I recently tested http packet information on our SSO authentication using a http packet sniffer application to see what traffic was being passed and to my amazement I noticed that the Oracle SSO username and passwords were being revelaved by packet sniffer tool. The SSO is currently configured to work over http and not https.

Please can anyone tell me how we can secure this information as this is extremely important.

Thanks