 |
Oracle Advanced Security |
Oracle Advanced Security is a security option for the Oracle Database 11g Release 2. Introduced in Oracle8i, Oracle Advanced Security combines network encryption, database encryption and strong authentication together to help customers address privacy and compliance requirements:
- Transparent Data Encryption
- Network encryption
- Strong authentication
Transparent Data Encryption
Transparent Data Encryption provides an easy and effective protection of stored data by transparently encrypting data (using AES with up to 256 bits, or 3DES168) at the column or tablespace level.
Network Encryption
When information travels to and from the Database, Oracle Advanced Security Option provides a high level of security by offering support for the following encryption standards:
- AES (256, 192, and 128 bits)
- 3DES168 (3 and 2 keys)
- DES (56 and 40 bits)
- RC4 (256, 128, 56, and 40 bits)
Oracle Advanced Security also protects the integrity of information, making sure the message hasn't been modified since it left the source by adding an encrypted digest to the message, using either SHA-1 or MD5.
Strong Authentication
Passwords alone are often not secure enough, and are known for their high TCO. Combined with the weak security they provide, they should not be used on their own. Two-factor (or "strong") authentication is based on something the user has (a smart card, token, etc.) and something the user knows (a PIN or passcode). Oracle Advanced Security supports the following industry-standard authentication methods:
- Kerberos
- RADIUS (Remote Authentication Dial-In User Service)
- Secure Sockets Layer (with digital certificates)
- PKI
|
Bookmark
