We’re sorry. We could not find a match for your search.

We suggest you try the following to help find what you're looking for:

  • Check the spelling of your keyword search.
  • Use synonyms for the keyword you typed, for example, try “application” instead of “software.”
  • Start a new search.
Contact Us Sign in to Oracle Cloud
  1. Oracle Canada - English
  2. Security
  3. Database Security

Oracle Key Vault

Oracle Key Vault securely stores encryption keys, Oracle Wallets, Java Keystores, and credential files in a scalable, fault-tolerant, multimaster cluster that is separate from the encrypted data itself.

New release: Oracle Key Vault 21.4

This release improves operational security with support for nonextractable keys, organizational certificates, and backup retention policies.

Read the announcement

Explore Oracle Key Vault

Secure key storage, management, and distribution

Oracle Key Vault is specifically engineered for high-performance encryption key management for Oracle Transparent Data Encryption, part of Oracle Advanced Security. Only Oracle offers encryption key management for advanced database architectures like Oracle Real Application Clusters (Oracle RAC), Oracle Data Guard, RMAN backups, and pluggable databases (PDBs).


Centralized secrets storage and distribution

Reduce complexity and strengthen security by centrally storing and delivering passwords, tokens, SSH keys, certificates, wallets, and other secrets to authorized users and servers. The impact of losing one of these secrets can be catastrophic. Key Vault mitigates that risk while maximizing availability.


Scale without downtime

High-availability cluster deployment supports up to 16 fully replicated Key Vault nodes, each capable of read/write operations. Scale the cluster without downtime, support geographically distributed systems, and enable high levels of resource utilization with no idle standby servers.


Tested and certified

Key Vault is engineered to work seamlessly throughout the Oracle ecosystem with support for Oracle Database, Oracle MySQL, Oracle Exadata, Oracle Real Application Clusters (Oracle RAC), Oracle Data Guard, Oracle GoldenGate, and more. Key Vault is specifically designed to meet the demanding performance requirements of a busy IT stack, providing secure, centralized storage and management of keys in a highly available cluster of key management servers.


Easy to deploy

Available in Oracle Cloud Marketplace, Key Vault offers prebuilt images so organizations can get started and improve database security in just minutes. Oracle Cloud Infrastructure (OCI)-based Key Vault clusters provide fault-tolerant, continuous key management services to on-premises, hybrid, or multicloud database deployments.

  • Leverage OCI’s resiliency by installing Key Vault cluster nodes into different availability domains within the same region, or across different Oracle Cloud regions.
  • Benefit from the flexible deployment options by increasing or decreasing the size of the OCI VM shape.
  • Scale Key Vault to meet requirements by adding or removing nodes on-premises or in the cloud.

RESTful APIs

Key Vault provides RESTful APIs for cluster monitoring, database enrollment, and automation, allowing management of large numbers of databases and reducing the cost of administration by eliminating the repetitive tasks of manual database registration. A refreshed management console with new dashboards and built-in reports allows administrators to quickly drill down into the various keys and secrets, along with the endpoints and their users.


Oracle Key Vault use cases

  • Online storage and distribution of keys

    Embrace a more secure alternative to using local wallets. Remove encryption keys from the database server and reduce the risk of compromise.

  • Key management for Oracle GoldenGate

    Key Vault offers online key management for encrypted trail files, independent of the database vendor, protecting data throughout the entire replication process.

  • Key Management for ACFS

    Key Vault supports key storage and distribution for Oracle Automatic Storage Management Cluster File System.

  • Accelerate Compliance

    Manage keys for Transparent Data Encryption to accelerate compliance with regulations such as GDPR, CCPA, PCI-DSS, HIPAA, and more.

Resources

Documentation

Oracle Key Vault documentation

Review the documentation for Oracle Key Vault versions 21.2, 12.1, 12.2, and 18. Topics include installation, upgrading, clustering, integration with HSMs, maintenance and management, and much more.

community

AskTOM database security Office Hours

AskTOM Office Hours offers free, open Q&A sessions with Oracle Database experts who are eager to help you fully leverage the multitude of enterprise-strength database security tools available to your organization.

Learning Library

LiveLabs Workshop: Oracle Key Vault

This workshop introduces Key Vault’s features, explains how to set up the environment and walks attendees through the process for generating SSH keys. Run this workshop on your own tenancy or reserve a time to run the workshop on LiveLabs, free of charge.

You may also be interested in

Blog post

Deploy Key Vault in minutes

Datasheet

Benefits, features, and more

Frequently asked questions

Get the answers

Oracle Database security

Learn about more security solutions

Get started with Oracle Key Vault


Buy Key Vault today

Download the Key Vault software appliance from the Oracle Cloud Marketplace to start using the scalable, highly-available key management system.

Download

Try the Key Vault LiveLabs Workshop

Learn how to set up the environment and generate SSH keys. Run the workshop on your own tenancy or reserve a time to run the workshop on LiveLabs, free of charge.

Register

Run the Database Security Assessment Tool

Quickly identify your database security posture and get recommendations to mitigate risks.

Download for free

Contact sales

Talk to a team member about Oracle database security.

Get in touch