NytroZ
asked on
Encrypt Red Hat OS that runs Oracle 11G
We currently have an Oracle 11G server that runs on the Red Hat 6 OS. HIPPA requirements are forcing us to encrypt data at rest so we thought it would be easiest to use the OS encryption in Red Hat. If the OS is encrypted, how does this affect Oracle? can the encryption be turned on now or does it need to be enabled before Oracle is installed?
ASKER
I think I will eventually need to encrypt certain tables in the database at some point as well so with that in mind does dm-crypt figure into that at all?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
TDE is a way to protect column data.
Of course, it has a cost as it is a separate license.
Advanced Security also has other features that are guaranteed to meet your HIPPA requirements.
Their main page even mentions HIPPA:
http://www.oracle.com/us/products/database/options/advanced-security/overview/index.html
Of course, it has a cost as it is a separate license.
Advanced Security also has other features that are guaranteed to meet your HIPPA requirements.
Their main page even mentions HIPPA:
Helps address regulatory requirements, including PCI DSS and HIPAA HITECH
http://www.oracle.com/us/products/database/options/advanced-security/overview/index.html
Indded dm-crypt is for raw disks (think ASM), that includes filesystems on them
LVM also has same sort of transparent encryption and a bit more flexibility
LVM also has same sort of transparent encryption and a bit more flexibility
dm-crypt/LUKS is also a method of encryption but can't be done with data already on the partition
not sure if it's an option for you, but you could build a new system, encrypt it with the native RHEL tools (dm-crypt/LUKS), then migrate the oracle database(s) over