Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

Share this Page URL

2 Transparent Data Encryption > Encrypting Data Stored in the Database - Pg. 28

28 Part I: Oracle Database Security New Features Understanding and acknowledging the use of public key and symmetric key encryption is important to the Oracle Database because the database supports only symmetric key algorithms. The performance and efficiency of symmetric key algorithms make them a natural choice for the database. Unfortunately, this leaves open the issue of key management, which is addressed later in this chapter. Encrypting Data Stored in the Database Understanding that the primary goal of encryption is to protect data in an unprotected medium, you might be wondering if it makes sense to encrypt data in the database at all. As you probably expected, this book emphasizes making the database a more secure medium. So, if it is very secure, why encrypt? It turns out there are valid reasons for wanting to encrypt data stored in the database. First, you might be forced to comply with a regulation (legal, industrial, or organizational directive) that states that certain classes of data must be stored using encryption. This is the case with PCI for credit card data, and many companies have developed internal rules for what data must be encrypted when stored. In addition, the privacy laws of several states, such as California's SB 1386, remove the requirement for notification of victims of data privacy breaches if the data in question was encrypted. So in some cases, we are told we must encrypt out data, and in others it may be in our best interest in protecting corporate reputation, brand value, and customer relationship. A second valid requirement for encryption is assurance that data can be protected throughout