| Encrypted columns - how to [message #59435] |
Wed, 19 November 2003 09:42  |
Sanjay Bajracharya
Messages: 279
Registered: October 2001
Location: Florida
|
Senior Member |
|
|
I have a simple question. I want to encrypt certain columns in a table for security reasons. Let's say I have
create table emp
(
first_name varchar2(20),
last_name varchar2(20),
ssn number(9)
)
And I want to encrypt the ssn column (yeah)..
1. Is this possible ?
2. How can it be achieved ?
3. How do I read (decrypt) the ssno out of the table ?
4. who else will be able to decrypt (apart from SYS and SYSTEM I beleive)?
5. any other issues ?
6. any alternatives ?
7. any one know a good Metalink Doc Id ?
Where does 'dbms_obfuscation_toolkit.DESEncrypt' come into the picture ?
Env:
Oracle 9.2.0.4.0 64-bit
IBM RS/6000, AIX5L
Any help will be appreciated
--
Sanjay
|
|
|
|
| Re: Encrypted columns - how to [message #59436 is a reply to message #59435] |
Wed, 19 November 2003 12:14  |
 |
Mahesh Rajendran
Messages: 10707
Registered: March 2002
Location: oracleDocoVille
|
Senior Member
Account Moderator |
|
|
sanjay,
dbms_obfuscation_toolkit is one you have to look into to do the encryption and decryption (doc id 166884.1 gives a working sample.)
who do these?
well, the trick lies in the 'key' you specify.
if sys does not know the key, sys cannot decrypt it.
we do have this in place and functional along with RLS (row level security) and sqlnet encryption and it is reliable.
dbms_obfuscation_toolkit -> to scramble the passCodes and personal info ( HIPAA privacy ??)
RLS -> the user will see only his data ( like when scott queries table emp, he can see only records owned by scott).
sqlnet encrption -> to ensure that no one can tap the transactions between the oracle server and clients.
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
