• +1-818-527-9935
  • Register
Assignment Help

Home >> Computer Science Help >> Database Homework Help >> Oracle Database Encryption

Submit Assignment

Payment Online Assignment Help sfsf

Oracle Database Encryption

Oracle Transparent Data Encryption

Transparent Data Encryption (TDE) allows the encryption and decryption of data transparent to the application without modifying the application code. When users insert the data, the database transparently encrypts it and stores it in the column. Similarly, when users select the column, the database automatically decrypts it. The transparent data encryption is of two types. The first one is the column encryption in which selected columns with sensitive data can be encrypted and the second one is the tablespace encryption in which the complete tablespace is encrypted. The TDE master encryption key is stored outside of the database in a wallet, a PKCS#12 formatted file that is encrypted using a password. The column keys or tablespace keys are stored in Oracle Data Dictionary, encrypted with the master key. In case if the data base backup files gets stolen, the data cannot be seen without the wallet password. Hence the wallet life cycle management is very important in order to protect the data.

Tablespace Encryption

Tablespace encryption is used to encrypt the entire tablespace. All objects inside the encrypted tablespace are automatically encrypted. Tablespace encryption is the alternative to column encryption incase the database tables contain sensitive data in multiple columns. Also in case of tablespace encryption there is no need to do extensive analysis on database schema to identify the sensitive columns as the complete tablespace is encrypted. AES 128, AES 192, AES 256 and 3DES168 are the supported algorithms for tablespace encryption. The tablespace encryption configuration can be done using the following SQL command:

CREATE SMALLFILE TABLESPACE "TEST" DATAFILE  '/u01/app/oracle/oradata/test/test.dbf' SIZE 20M AUTOEXTEND ON NEXT 5M MAXSIZE UNLIMITED NOLOGGING EXTENT MANAGEMENT LOCAL SEGMENT SPACE MANAGEMENT AUTO ENCRYPTION USING 'AES192' DEFAULT STORAGE (ENCRYPT);

Compress and encrypt

TDE tablespace encryption and Oracle's compression technologies allow encryption of compressed data. TDE tablespace encryption can be combined with Advanced Compression in single instance and RAC deployments, as well as Exadata Hybrid Columnar Compression (EHCC). Export files generated with Oracle Data Pump and backups created by Oracle RMAN can be compressed and encrypted as well. Because Oracle applies compression before encryption, encryption has no negative impact on the compression ratio.

Unified master encryption key

The master encryption key for TDE tablespace encryption and TDE column encryption are now combined to one unified master encryption key. This allows transparent re-key operations for both TDE tablespace encryption and TDE column encryption, regardless if the master encryption key is stored in the Oracle Wallet, or in one of the certified Hardware Security Modules offered by Oracle (SCA 6000), Bull, SafeNet, Thales and Utimaco.

Services: - Oracle Database Encryption Homework | Oracle Database Encryption Homework Help | Oracle Database Encryption Homework Help Services | Live Oracle Database Encryption Homework Help | Oracle Database Encryption Homework Tutors | Online Oracle Database Encryption Homework Help | Oracle Database Encryption Tutors | Online Oracle Database Encryption Tutors | Oracle Database Encryption Homework Services | Oracle Database Encryption