Login
    Contenu x
    Database Encryption
    • 06 Jan 2025
    • 1 Minute à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    Database Encryption

    • Mis à jour le 06 Jan 2025
    • 1 Minute à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    You can encrypt Oracle and Microsoft SQL Server databases and secure connections to them using TLS/SSL. For more information about encrypting embedded databases, see  Database encryption.

    Data-at-rest encryption

    Transparent data encryption (TDE)

    Transparent data encryption allows the encryption of databases at file level.

    Transparent data encryption (TDE) with Oracle Database

    When encrypting an Oracle database, you can choose between a software keystore, where the encryption key is stored in a particular file, or a hardware keystore, where the encryption key is stored on an HSM.

    To configure a software keystore

    1. Create the software keystore, where you may choose between password-based software keystores, auto-login software keystores, and local auto-login software keystores.
    2. Set the software TDE master encryption key.
    3. Begin encrypting data.

    To configure a hardware keystore

    1. Configure HSM by following the vendor's instructions.
    2. Set the hardware TDE master encryption key.
    3. Begin encrypting data.

    For more detailed information about encrypting Oracle databases with TDE, refer to the Oracle documentation.

    Transparent data encryption (TDE) with Microsoft SQL Server database

    To configure a master key

    1. Create a master key.
    2. Obtain a certificate that is protected by the master key.
    3. Create a database encryption key and protect it by the certificate.
    4. Set the database to use encryption.

    For more detailed information about encrypting Microsoft SQL Server databases with TDE, refer to the Microsoft documentation.

    Data-in-transit encryption

    Oracle network data encryption and integrity

    To encrypt an Oracle connection

    1. Activate encryption and integrity.
    2. Set up the negotiation of encryption and integrity.
    3. (OPTIONAL) Set up the encryption seed.
    4. Configure the encryption and integrity parameters using Oracle Net Manager.

    For more detailed information about configuring network data encryption and integrity, refer to the Oracle documentation.

    Encrypting connections with Microsoft SQL Server

    To encrypt a Microsoft SQL Server connection

    1. Install a certificate in the Windows certificate store of the server computer.
    2. Open the SQL Server Configuration Manager, in the SQL Server Network Configuration configure the database engine to use certificate.
    3. Set the encryption options. We recommend to use ForceEncryption.

    For more detailed information about encrypting connections to SQL Server, refer to the Microsoft documentation.

    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle