Need suggestion for data encryption

Hello Experts,
I need your expert opinion on one of the data encryption method. We have some legal compliance to implement data encryption as listed below, lets say we have to apply encryption on 2 tables (1) TAB_A (2) TAB_B.
(1) Need data encryption on the TAB_A & TAB_B for 2-3 columns and not the entire table.
(2) Data should not be in readable format, if anyone connect to database and query the table.
(3) We have reporting services on our tables but reporting services doesn't connect to our schema directly rather they connect to a different schema to which we have given the table Select grant.
(4) Reports should work as it is, and users should see the data in readable format only.
(5) There are batch processes which generates the data into these tables and we are not allowed to make any changes to these batch processes.
This is a business need which has to be delivered. I explored various options such as VPDs, Data encryption methods etc but honestly none of these are serving our business need. There is also a limitation of encrypting data as data volume of quiet high (30TB DB) and generally users query the data on millions of records at a time. Also reports have very tight SLAs as well. If we create any encryption wrapper then decrypt will take longer in reports and will cause the SLA miss for reports.
Could someone please suggest any better solution to me or if something is inbuilt in Oracle? We are using Oracle 11g.
Regds,
Amit.

you can read about Transparent Data Encryption
Check
http://docs.oracle.com/cd/B28359_01/network.111/b28530/asotrans.htm

Similar Messages

Need Suggestion for Archival of a Table Data

Hi guys,
I want to archive one of my large table. the structure of table is as below.
Daily there will be around 40000 rows inserted into the table.
Need suggestion for the same. will the partitioning help and on what basis?
CREATE TABLE IM_JMS_MESSAGES_CLOB_IN
LOAN_NUMBER VARCHAR2(10 BYTE),
LOAN_XML CLOB,
LOAN_UPDATE_DT TIMESTAMP(6),
JMS_TIMESTAMP TIMESTAMP(6),
INSERT_DT TIMESTAMP(6)
TABLESPACE DATA
PCTUSED 0
PCTFREE 10
INITRANS 1
MAXTRANS 255
STORAGE (
INITIAL 1M
NEXT 1M
MINEXTENTS 1
MAXEXTENTS 2147483645
PCTINCREASE 0
BUFFER_POOL DEFAULT
LOGGING
LOB (LOAN_XML) STORE AS
( TABLESPACE DATA
ENABLE STORAGE IN ROW
CHUNK 8192
PCTVERSION 10
NOCACHE
STORAGE (
INITIAL 1M
NEXT 1M
MINEXTENTS 1
MAXEXTENTS 2147483645
PCTINCREASE 0
BUFFER_POOL DEFAULT
NOCACHE
NOPARALLEL;
do the needful.
regards,
Sandeep

There will not be any updates /deletes on the table.
I have created a partitioned table with same struture and i am inserting the records from my original table to this partitioned table where i will maintain data for 6 months.
After loading the data from original table to archived table i will truncating the original table.
If my original table is partitioned then what about the restoring of the data??? how will restore the data of last month???

Need suggestion for designing a BEx report

Hi,
I need suggestions for designing a BEx report.
Iu2019ve a DSO with below structure:
1. Functional Location u2013 Key
2. Maintenance Plan u2013 Key
3. Maintenance Item u2013 Key
4. Call # - Key
5. Cycle u2013 Data Field
6. Planned Date u2013 Data Field
7. Completion Date u2013 Data Field
This DSO contains data like:
Functional -
Plan --- Item -
Call# --- Cycle -
Planned Dt -
Completion Dt
Location
11177 -
     134 -
     20 -
     1 -
T1 -
     02-Jan-2011 -
     10-Jan-2011
11177 -
     134 -
     20 -
     2 -
T2 -
     15-Feb-2011 -
11177 -
     134 -
     20 -
     3 -
T1 -
     15-Mar-2011 -
11177 -
     134 -
     20 -
     4 -
M1 -
     30-Mar-2011 -
25000 -
     170 -
     145 -
     1 -
T1 -
     19-Jan-2011 -
     19-Jan-2011
25000 -
     134 -
     145 -
     2 -
T2 -
     20-Feb-2011 -
     25-Feb-2011
25000 -
     134 -
     145 -
     3 -
T1 -
     14-Mar-2011 -
Now Iu2019ve to create a report which will be executed at the end of every month and should display the list of Functional Locations whose Cycles were planned in that particular month, along with the last completed Cycle/Date.
Thus based upon above data, if I execute report at the end of (say) March then report must display:
Functional ---     Curr. Cycle --- Planned Date --- Prev. completed Cycle --- Prev Completed Date
Location
11177 -
     T1 -
     15-Mar-2011 -
---     T1 -
--     10-Jan-2011
11177 -
     M1 -
     30-Mar-2011 -
---     T1 -
--     10-Jan-2011
25000 -
     T1 -
     14-Mar-2011 -
---     T2 -
--     25-Feb-2011
Any idea how can I display Previous Completed Cycle and Completion Date (i.e. the last two columns)?
Regards,
Vikrant.

hi vikrant,
You can a Cube at the reporting layer which gets data from DSO and which has these 2 extra characteristics completion date and previous cycle along with other chars and keyfigures from DSO.
You can populate these based on your logic in the field routine.
Hope it helps.
Regards
Dev

JDBC Thin Driver Support for Data Encryption and Integrity

Hello JDev Team,
I am trying to implement JDBC Thin Driver Support for Data Encryption and Integrity.
It works fine with java.sql.Connection and java.util.Properties like in the following code:
DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
Properties props = new Properties();
int level = AnoServices.REQUIRED;
props.put("oracle.net.encryption_client", Service.getLevelString(level));
props.put("oracle.net.encryption_types_client", "( RC4_40 )");
props.put("oracle.net.crypto_checksum_client",Service.getLevelString(level));
props.put("oracle.net.crypto_checksum_types_client", "( MD5 )");
Connection conn = DriverManager.getConnection ("jdbc:oracle:thin:@localhost:1521:main", props);
etc...
But I am developing an application with InfoSwing components and it has a different way to connect to Oracle database using oracle.dacf.dataset.connections.Connection, like this:
sessionInfo1.setAppModuleInfo(new ModuleInfo("bc", "BcModule"));
sessionInfo1.setConnectionInfo(new LocalConnection("JDBCThin"));
sessionInfo1.publishSession();
My question is:
Is there any way to implement DataEncryption and Integrity into this type of connection?
Thanks a lot in advance.
Victor Bykov
null

Victor,
No, you can't do this from DAC, but I've been discussing it with the developer, and we both think this capability would be useful to have, so I've logged it as an enhancement request.
I do have a question for you. Once you've made the JDBC connection, do you need access to the Connection object afterwards? We're thinking of how the change could be implemented, and one way would be to allow you to pass in a Properties object when creating your own NamedConnection.
Thanks
Blaise

I need format for data in excel file load into info cube to planning area.

Hi gurus,
I need format for data in excel file load into info cube to planning area.
can you send me what should i maintain header
i have knowledge on like
plant,location,customer,product,history qty,calander
100,delhi,suresh,nokia,250,2011211
if it is right or wrong can u explain and send me about excel file format.
babu

Hi Babu,
The file format should be same as you want to upload. The sequence of File format should be same communication structure.
Like,
Initial columns with Characteristics (ex: plant,location,customer,product)
date column (check for data format) (ex: calander)
Last columsn with Key figures (history qty)
Hope this helps.
Regards,
Nawanit

Help Please: how to set JDBC properties for data encryption in BC4J

Hello,
I am trying to implement JDBC Thin Driver Support for Data Encryption and Integrity.
With java.sql.Connection and java.util.Properties, one would do something like the following code:
DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
Properties props = new Properties();
int level = AnoServices.REQUIRED;
props.put("oracle.net.encryption_client", Service.getLevelString(level));
props.put("oracle.net.encryption_types_client", "( RC4_40 )");
props.put("oracle.net.crypto_checksum_client",Service.getLevelString(level));
props.put("oracle.net.crypto_checksum_types_client", "( MD5 )");
Connection conn = DriverManager.getConnection ("jdbc:oracle:thin:@localhost:1521:main", props);
But, how can we do this with BC4J objects? Can we set this properties via EnvInfoProvider class? Please help. Thank you very much in advance.
Zhirong

Hi,
Try adding the code in the PBO part of your custom program used for the custom screen which you have created and added inside the BADI.
Regards,
Harish

Newbie needs help about Data Encryption

bought a Wireless G router Saturday, followed the instruction on the cd and hooked up the router to the Desktop (ME) and the cable modem. I am happy that my new laptop (XP) can surf the Internet anywhere in the house.
Can anyone see what I can doing when I surf the net via the laptop (wireless)? Can they see for example what I am typing in a Word document?
Since the desktop is connected to the router, can anyone see what's in my desktop computer?
On the laptop, I click on properties of Linksys router, it says: Data Encryptiopn No.
Do I need to set the laptop up for data encrytion? What is it encryting? stuff I type in my e-mail? stuff I type using Word? Does it only encrypt stuff that I send through the Internet?
What's WAP, WEP? Do I need it?
I called Linksys Tech Support, gave up after waiting for 30 minutes.
Please help.

No, no one can see what you type on your WORD document or whatever you are doing on your computers. It says NO ENCRYPTION because you have'nt enabled any security on your router. What the encryption does, is that it prevents other people that has a wireless PC to connect in your wireless network and get internet access. Once the encryption is enabled, if a PC tries to connect, it will be asked for a password, so if they input the incorrect password, they will not be able to connect and use your internet access. Did I make it clear?
WPA and WEP are types of encryption. WPA is more secured but it is not compatible with all wireless cards or laptop PC (if they are wireless ready). So i do suggest you use WEP on your router.

Need suggestions for concurrent reads while deleting all entities

Hello,
we need some suggestions for the following use case, as we cannot seem to find the correct transaction locking combination to meet our needs.
We are using BDB JE 4.1.10, and the entityStore is transactional. In a nutshell, BDB JE is used as a Cache for specific data that is pulled and updated regularly from a source Oracle DB. The application that holds BDB is a realtimel app, and response time is critical.
In order to avoid having to merge (Insert/update/delete) entities for some of the tables that are very static and small (a few hundred records that might change every day or so), we are trying to simply delete all records (with an EntityCursor loop, since there is no 'deleteAll' that we could find) and reinsert all data every 5 minutes, and then committing when the whole process is complete. This should always be very quick, but we are not immune to timeouts from the source Oracle DB, so the transaction can be long.
Ideally, while the delete/insert is happening, we want any concurrent read operations to return the old data (before the delete). We have made a test that locks the updater thread between the 'delete all' and 'update all' methods, so that the delete cursor is closed, but the Tx is not yet commited. We have tried the following for our reader thread:
1- If we get() a deleted entity with a LockMode.READ_UNCOMMITTED, we get a null entity back.
2- If we get() a deleted entity with LockMode.READ_COMMITTED, we get a LockTimeoutException.
We have also considered simply using truncate on the EntityStore, but this requires closing and reopening the DB, so this would not work for our need to always return a value, instantly.
Any ideas, suggestions on how we could do this in a simple manner?
Thanks,
Max

Hello Max,
I understand the issue you're describing.
I think the best performing solution by far is to load the new data into new databases while servicing reads from the old databases. When the load is complete, reads can be diverted to the new databases, and the old databases can then be removed.
Unfortunately, this is easier to do with the base API than with the DPL, because the DPL is managing the underlying (base API level) databases for you.
However, even using the DPL, this approach could be very straightforward if you happen to be keeping this data set (the one that needs to be reloaded) in a separate EntityStore, or you can change your application to do so. If so, you can create a new (empty) EntityStore with a different name and use this store for loading the new data. When the load is complete, divert reads to the new EntityStore object and remove all databases for the old EntityStore.
If this is impractical, please explain, and I'll try to suggest a different solution. If you cannot use a separate EntityStore for this particular data set, then the solution may be more complex.
--mark

Technology and training suggestions for data gathering app

Can anyone suggest some technologies and/or support to get us started on a mid-sized handheld effort?
Specifically, we're starting a project to build a handheld (WinCE-based) app which will allow users to fill out a short form and gather a GPS reading and perhaps a camera snapshot to accompany the form data. This data will later be imported into our J2EE app.
We have almost no handheld experience and don't know what technologies to evaluate, or what consulting expertise to set up to help start the team.
Many thanks for your help!

Hi Adam,
I'd suggest to implement it in a way that will be the fastest to deliver
working code, except the case when the main purpose of the project
is teaching you EJB, Weblogic and J2EE.
For this particular problem that could a session bean making
direct JDBC calls. It's just 5 lines of code...
Regards,
Slava Imeshev
"Adam Harvey" <[email protected]> wrote in message
news:3d1c7466$[email protected]..
>
I'm new to the WebLogic arena, and we're launching a new portal. We'vegot a portlet
that I want to query a SQL Server database for three records (specificallyonly one
column for the three records, that I want to concatenate). This data isupdated
approximately every four hours via an outside admin tool.
Looking for suggestions for the best way to implement this.
We don't need to constantly query this data, but it may also be overkillto persist
this data in a full entity EJB. I began to write a read-only entity EJBthat I figure
I could specify it's refresh interval in the deployment descriptor. Isthere a better
way? In a previous app, we were simply querying the database, storing astring (~1000
characters) in an application scope in memory, along with a date variable,and for
each user just checking the date variable. If the date was over fourhours ago,
we requeried the database with a component call (Microsoft COM). I'dprefer to reduce
even the RMI lookup for the bean if I can, but I don't think I grasp quiteenough
about the EJB pooling mechanism -- this might not be an issue.
Could I do this in a stateless session bean more efficiently?
We're running WLS6.1sp2 in a dev environ with Portal4.0sp2. (But upgradingto sp3
soon.)
Any suggestions would be appreciated! Thanks!
- Adam

Need suggestion for USB Bluetooth Adapter for HP Z230 Workstation

I've just purchased an HP Z230 Workstation, with an I7 processor. I need to equip it with Bluetooth capability so that I can connect the computer to an old Palm Tungsten T2.
There are gobs of USB 4.0 Bluetooth adapters / dongles on the market, but reading buyer's comments, they all seem to have some type of problem with compatibility or installation issues on something.
Does anyone have a suggestion for a USB Bluetooth adapter that has worked well with the Z230?
Thanks in advance for any help.
Terry
This question was solved.
View Solution.

I suggest joining the Enterprise Buisness forum and posting your query there.
Your HP Z230 Workstation is a business class HP product and not than a consumer class device. This is the HP Consumer support forum.
****Please click on Accept As Solution if a suggestion solves your problem. It helps others facing the same problem to find a solution easily****
2015 Microsoft MVP - Windows Experience Consumer

Need suggestion for new laptop

Hi, everyone I'm needing suggestions. I had a touchsmart tx2z however after nearly 4 years it has bit the dust couldn't be saved after its last crash computer would turn on but screen would stay black and ome of the keys like the caps lock would flash. Computer guys say my motherboard has gone bad. I'm looking for another computer now but would like one that is similar to the hp touchsmart but does not cost a lot of money.

Here is the current line-up of HP Touchscreen Laptops. Prices start at about $650 and go up from there. $650 sounds OK to my for a touchscreen laptop, but price is a subjective item. If these are too rich for you, you could always look at regular laptops.
Please send KUDOs
Frank
{------------ Please click the "White Kudos" Thumbs Up to say THANKS for helping.
Please click the "Accept As Solution" on my post, if my assistance has solved your issue. ------------V
This is a user supported forum. I am a volunteer and I don't work for HP.
HP 15t-j100 (on loan from HP)
HP 13 Split x2 (on loan from HP)
HP Slate8 Pro (on loan from HP)
HP a1632x - Windows 7, 4GB RAM, AMD Radeon HD 6450
HP p6130y - Windows 7, 8GB RAM, AMD Radeon HD 6450
HP p6320y - Windows 7, 8GB RAM, NVIDIA GT 240
HP p7-1026 - Windows 7, 6GB RAM, AMD Radeon HD 6450
HP p6787c - Windows 7, 8GB RAM, NVIDIA GT 240

Need suggestion for choosing Java development enviroment

Hi Evereyone,
I am new to Java Desktop Application.I need help on choosing proper Java technologies and development tool.
We have an existing CLIENT/SERVER based distributed control system, which was developed in C++(Server side) and VB(Client GUI).Now we are think of migrating the system to Java platform.
Here is the outline:
We want to create web based application that will run on windows and linux (linux on embedded PC).
The application should be able to support 10 � 100 users at once accessing/editing database.
We will also need to create a communication server that will run on web server P.C. that will communicate tcpip to field panels/log to db, as well as allow web screens to send/receive commands with field panels etc.
Could any one give me some suggestion about it?
I am thinking of Using J2SE 5.0, including RMI, JDBC and Swing for GUI. As for field panels, may choose J2ME.
Thank you very much in advance.

Thanks, zadok .
Actually, I don't have the system requirements neither. All I know is the following outline:
"We want to create web based application that will run on windows and linux (linux on embedded PC).
The application should be able to support 10 � 100 users at once accessing/editing database.
We will also need to create a communication server that will run on web server P.C. that will communicate tcpip to field panels/log to db, as well as allow web screens to send/receive commands with field panels etc."
It is a interview question, which need me to do research and give some suggestions. What I want to know is to figure out what kind of Java technology is necessary for developing this system because I want to make sure I head to right direction.
I know somehow it is hard to give suggestion based on this limited information.
One more thing I was confusing is the server-side architecture.
I need suggestion about sever side architecture:
a. write a dedicated server-side program, which act
as communication server to monitor and control field
panel, also act as server-side applicaiton by using
RMI to communicate with Client-side communication.
b. choose a general web server architecture. Put
everything in server side in Web Server, for example
Tomcat AS container, implementing the Communication
server as Web Service and the request from
Client-side go to Web Server first, then dispatch to
a proper web service.Why did you not include this information in the original question!
Why don't you just use Tomcat?
For your answer, "Why don't you just use Tomcat?", does it mean Tomcat without Web Service will be enough for this system development? Could you give me some detail about it?
Thank you very much, zadok.

Are there any tools for data encryption and decryption ?

Hi,
i am using oracle 9i R2, i want encrypt my data. Are there any tools available in market.
Please let me know the ways to do data encryption and decryption.
Thanks in advance
Prasuna.

970489 wrote:
using DBMS_OBFUSCATION_TOOLKIT.Encrypt /DESEncrypt we can't secure our password...So i am looking for an another alternative.As Blue Shadow said, what are you really trying to achieve?
Encrypting a password is itself not secure. Anything that can be encrypted can be decrypted. That is why Oracle itself DOES NOT encrypt passwords.
Surprised??
Here's what Oracle does with passwords, and what others should be doing if they have to store them.
When the password is created, the presented password - clear text - is concatenated with the username. The resulting character string is then passed through a one-way hashing function. It is that hashed value that is stored. Then when a user presents his credentials to log on to the system, the presented credentials are combined and hashed in the same manner as when the password was created, and the resulting hash value compared to the stored value.

I need suggestions for an online trading application

Hi,
I am going to develop an online trading application. I have decided to use JAVA EE 5 and I have read "The Java(tm) EE 5 Tutorial". Because I am a (C++) programmer and new to Java, I need suggestions to start development.
Here is summary of the system in my mind. There will be
a database to store user's information and operations,
a web client for creating and managing user accounts,
a desktop application and web client for users for online trading and
an application client for brokers for risk management.
Here is a sample scenario for flow,
- User wants to create an account
- Company creates an account for user
- user gets the prices and trades via application client (web or desktop)
- system informs dealers and broker via their client platform
- broker perform necessary operations.
Java EE 5 Application model fits the system I am trying to develop but I feel I still need some guidance and there are a few things I couldn't figured out yet. For these reasons I want to develop a prove of concept system and this is the system in my mind.
- A simple database
user (user_id, user_login, user_password, user_name)
stock (stok_id, stok_name)
operation (op_id, user_id, stok_id, op_type, op_amount, op_value)
- A price server
will generate random prices and push new values to registered clients
- A web client to create new users (for admin)
- A web client to display operations of users (for user)
- A desktop application and web client for operation entries (for users)
displays prices coming from price servers, sends users trade requests
- A desktop application client for informing admin about trades (for admin)
when a user buys or sells something, this client notified (user buy/sell something)
What do you offer for this sample system?
Which is the best IDE?
Which Application Server should I use (scalability and speed is critical)?
Which Java EE APIs should I use?
JSP or JSF?
Will I need hibernate?
And so on.. I need some points to start and go.
Thanks for any help.
Ahmet

It wouldn't be an arbitrary track. However, maybe you could make an arbitrary track by dividing the track into segments. Each segment is either a straight line or an arc. These are easy to model the cars' behavior on, because you'll have a straightforward way to determine the direction the car should be facing, and the range to the left and right where the car can stray and still be on the track.

Need links for data structure and algorithms.

Hi.
I am just new to java but need to learn data structure and algorithms.
Do your guys got any good links or bbs to learn?
Thanx in advance

http://www.amazon.com/exec/obidos/tg/detail/-/1571690956/ref=cm_huw_sim_1_3/104-7657019-1043968?v=glance
http://www.amazon.com/exec/obidos/tg/detail/-/0534376681/ref=cm_huw_sim_1_4/104-7657019-1043968?v=glance
http://www.amazon.com/exec/obidos/tg/detail/-/0672324539/ref=cm_huw_sim_1_2/104-7657019-1043968?v=glance
http://www.amazon.com/exec/obidos/tg/detail/-/0201775786/qid=1060946080/sr=8-1/ref=sr_8_1/104-7657019-1043968?v=glance&s=books&n=507846
$8 for the first

Need suggestion for data encryption

Similar Messages

Maybe you are looking for