Re: TDE

From: DA Morgan <damorgan_at_psoug.org>
Date: Fri, 19 Dec 2008 12:19:14 -0800
Message-ID: <1229717952.740134@bubbleator.drizzle.com>

Chuck wrote:
> I just read an oracle white paper on transparent data encryption in
> 10gR2. It states that decryption occurs at the SQL layer. Doesn't that
> mean that the data will be decrypted *before* it's transmitted over the
> network to a client? I would think that defeats part of the goal of
> encryption if it's not done at the client. Am I misunderstanding something?
>
> Quoted from the white paper...
>
> "TDE encrypts data before it's written to disk and decrypts data before
> it is returned to the application. The encryption and decryption process
> is performed at the SQL layer, completely transparent to applications
> and users."

TDE is intended to safeguard backups of the datafiles ... not the data in a database with an open wallet.

-- 
Daniel A. Morgan
Oracle Ace Director & Instructor
University of Washington
damorgan_at_x.washington.edu (replace x with u to respond)
Puget Sound Oracle Users Group
www.psoug.org

Received on Fri Dec 19 2008 - 14:19:14 CST

This message: [ Message body ]
Next message: joel garry: "Re: Synonym in trucate table, drop table ..."
Previous message: DA Morgan: "Re: Grid Control 10gR2: repository password"
In reply to: Chuck: "TDE"
Next in thread: Palooka: "Re: TDE"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message