tamirmilo
asked on
Encrypting Oracle tablespace
Hello,
I have written an application using Perl and Oracle 11g,
I would like to hide the internal database of the application from my clients.
What is the best way to achieve that?
Can it be possible even if they have sys/system access to the DB?
Many thanks
Tamir
I have written an application using Perl and Oracle 11g,
I would like to hide the internal database of the application from my clients.
What is the best way to achieve that?
Can it be possible even if they have sys/system access to the DB?
Many thanks
Tamir
My Oracle Vault knowledge is limited so I could be way off. Just going from memory on something I think I read a while back.
Even using Vault you might not be able to do it unless you want called every time the database is started.
The way I understand this to work is a Wallet Manager, separate person from the DBA, needs to open the wallet for the database to open.
Even using Vault you might not be able to do it unless you want called every time the database is started.
The way I understand this to work is a Wallet Manager, separate person from the DBA, needs to open the wallet for the database to open.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hi,
So VAULT is not really an option for me...
I will useDBMS_CRYPTO...
Can the users able to decrypt it?
Many thanks,
Tamir
So VAULT is not really an option for me...
I will useDBMS_CRYPTO...
Can the users able to decrypt it?
Many thanks,
Tamir
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yes, vault is expensive. Encrypting hides it to a certain extent from the admins, but they still have access to it and most likely could decrypt it if they really wanted to take the time.
If you absolutely want them out of the data, vault is the only way I know to keep them out.
If you want to make it difficult for them to view the real data, then encrypting it should be sufficient.
If you absolutely want them out of the data, vault is the only way I know to keep them out.
If you want to make it difficult for them to view the real data, then encrypting it should be sufficient.
ASKER
Thank you very much. All the best
http://www.oracle.com/technetwork/database/options/database-vault/index-085211.html