Encryption over Database Link

From: Deas, Scott <Scott.Deas_at_lfg.com>
Date: Thu, 5 Jun 2014 16:29:16 +0000
Message-ID: <C1FB7BA65B13C542B2CB1CE5DB8F74AF169AE46E_at_NC2PWEX501.us.ad.lfg.com>

Hello,

We have a requirement that we create database links to a database at an external site. The network will be public, meaning we need to ensure all communication across said network needs to be encrypted.

We have no control over the destination database, we are passing SQL to the destination database and pulling back results, but need to make sure that all transmissions across the link will be encrypted (not just user authentication).

The local databases will be 10.2.0.4 on AIX and 11.2.0.4 on Linux. The destination database will be 11.2.0.3 on AIX. All are Enterprise Edition. I've read through some of the documentation for Advanced Security, and we do have some licenses available, so if that's the best solution, we can implement it at the local databases, but destination database will not have Advanced Security installed, so any solutions that require it on both sides would not work.

Additionally (and most obviously), we want to avoid any changes to the code utilizing these links, so any suggestions creating views on top of tables using DBMS_CRYPTO to encrypt and then decrypt at the local database won't work. We really just need to implement a secure way to transfer packets been the two sites.

Thanks,
Scott
Notice of Confidentiality: **This E-mail and any of its attachments may contain Lincoln National Corporation proprietary information, which is privileged, confidential, or subject to copyright belonging to the Lincoln National Corporation family of companies. This E-mail is intended solely for the use of the individual or entity to which it is addressed. If you are not the intended recipient of this E-mail, you are hereby notified that any dissemination, distribution, copying, or action taken in relation to the contents of and attachments to this E-mail is strictly prohibited and may be unlawful. If you have received this E-mail in error, please notify the sender immediately and permanently delete the original and any copy of this E-mail and any printout. Thank You.**

--
http://www.freelists.org/webpage/oracle-l

Received on Thu Jun 05 2014 - 18:29:16 CEST

This message: [ Message body ]
Next message: Chris Taylor: "Re: Encryption over Database Link"
Previous message: Andrew Kerber: "Re: Oracle VM usage for database servers"
Next in thread: Chris Taylor: "Re: Encryption over Database Link"
Reply: Chris Taylor: "Re: Encryption over Database Link"
Reply: Niall Litchfield: "Re: Encryption over Database Link"
Maybe reply: Deas, Scott: "RE: Encryption over Database Link"
Maybe reply: Hans Forbrich: "Re: Encryption over Database Link"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message