Configuring Encryption

Encryption is the process of disguising a message rendering it unreadable to anyone but the intended recipient.

To configure encryption parameters:

  1. In the navigator pane, expand Oracle Net Configuration > Local > Profile.

  2. From the list in the right pane, select Oracle Advanced Security.

  3. Select the Encryption tab.

  4. Select either Client or Server from the Encryption list.

  5. Select a value from the Encryption Type list to specify the client or server behavior when negotiating encryption and integrity. The four possible values are as follows:

    Element

    Description
    accepted

    Service will be active if the other side of the connection specifies either "required" or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.

    rejected

    		 Service must not be active, and the connection will fail if the other side specifies "required".
    requested

    Service will be active if the other side of the connection specifies either "accepted", "required", or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.  
    required Service must be active, and the connection will fail if the other side specifies "rejected", or if there is no compatible algorithm on the other side.
  6. Enter an encryption seed in the Encryption Seed field: a random string of up to 256 characters. This encryption seed is used with the encryption algorithm you select in the next step.
  7. From the Available Methods list, select an encryption algorithm, and then choose the right-arrow (<) button to move it to the Selected Methods list. The order of the methods in the Selected Methods list determines the preferred order for negotiation. The following algorithms are supported by Oracle Advanced Security:

    Element

    Description
    RC4_256

    256 bit key size

    3DES168

    		 Triple DES with a three-key (168 bit) option
    RC4_128

    128 bit key size
    3DES112 Triple DES with a two-key (112 bit) option
    RC4_56 56 bit key size
    DES Standard 56 bit key size
    RC4_40 40 bit key size
    DES40 40 bit key size
  8. Choose File > Save Network Configuration.

Note: All Oracle Advanced Security encryption algorithms and key lengths are available for U.S. domestic use only.

Related Topics

Oracle Net Services Overview

Copyright © 1996, 2011, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its affiliates.
Other names may be trademarks of their respective owners.