Encrypt procedure

Similar Messages

• Encrypt procedure in oracle

  How to encrypt the procedure in oracle use wrap?
  Pls tell me the way and step.

  check this dude:
  http://download-west.oracle.com/docs/cd/B10501_01/appdev.920/a96624/c_wrap.htm#2062
  succes.

• Third part encryption procedure

  Is there a third party (from an Oracle partner) procedure to encrypt data with a 128 bits key algorithm?.

  Is there a third party (from an Oracle partner) procedure to encrypt data with a 128 bits key algorithm?.

• Get error message from a nested/encrypted stored procedure

  Hi,
  I have an encrypted procedure, that is used inside my 'own' complex procedure as:
  Begin try
  Begin tran
  Do a lot
  insert into #tmp exec xp_encryptedSP
  Do a lot more
  commit tran
  end try
  begin catch
  print ERROR_MESSAGE()
  rollback tran
  end catch
  Some error occur on the insert into #tmp exec xp_encryptedSP row, and in this case it's correct that the error occur, but:
  If I run only exec xp_encryptedSP in query analyzer, I can see the root cause error message,
  but in my complex procedure all I get is:
  Cannot use the ROLLBACK statement within an INSERT-EXEC statement.
  I have tried to enclose the insert into #tmp exec xp_encryptedSP in an own try block, but all I get is the message above.
  Please help
  /Magnus
  Magnus Burk

  No, the error message has nothing to do with the fact that the procedure obfuscated. It is a limitation of INSERT-EXEC. A quite silly one, since a consequence of the error is that the transaction is rolled back...
  There are better ways to share data between stored procedures, but most of them assumes that you can change the procedure you call, and obviously this is not possible since this is a vendor procedure.
  So it looks like you are in for heavy artillery, that is the CLR. See here for an example:
  http://www.sommarskog.se/share_data.html#CLR
  I should warn you in advance that error handling when the CLR is involved is also a very difficult thing.
  Erland Sommarskog, SQL Server MVP, [email protected]

• AES encrypt/decrypt

  Hi,
  I need to encrypt a file in Java using AES, given an 'EncryptionKey'. The "EncryptionKey" will be given to me as a String. Later, the client needs to be able to decrypt it using the same "EncryptionKey", with ANY decryption tool.
  I'm not sure how this can be done. The sample codes I saw online usually use a KeyGenerator to generate the Key. It seems like maybe I can use the "EncryptionKey" as a password, and use this password to generate a Key like this:
  http://javaalmanac.com/egs/javax.crypto/PassKey.html
  However, the link above uses DES. If I want to use AES, is it possible? Also, the client is not supposed to know anything about the salt and iteration count, all he knows is the "EncryptionKey".
  Thanks a lot!

  The use of 'any' decryption tool needs to be constrained to those tools that support not just the prime encryption algorithm but also the secondary algorithms.
  The code fragment I posted explicitly used
  a) 'AES' as the prime encryption algorithm,
  b) 'CBC' as the block mode,
  c) 'PKCS5Padding' to pad the data to an integral number of blocks
  and it implicitly used a separate Key and IV. It is possible to use a random IV and to send the IV as a prefix to the encrypted data. It is normal then to use a random IV so that no two messages use the the same IV. You could of course take a pragmatic approach and just use a fixed IV!
  The JCE gives you other encryption algorithms, other block modes and other padding modes and, since it is really a framework, it can be extended to add in further algorithms and processing.
  Further processing not included in the JCE could be applied. For example, the resultant encrypted data could be 'armored' by using Base64 or HEX encoding and it may be compressed before encryption.
  As you can see, the 'devil is in the detail' and YOU have to decide how the data will be processed and therefore what algorithms any decryption tool must support.
  The JCE gives you a set of building block but there are more operations (such as Base64 encoding) that may be needed. Using the JCE together with some 3rd party tools will allow you to create an encryption procedure that another tool will be able to decrypt BUT the other tool will need to specify what operations it performs to decrypt the data. You will need to study the decryption tool's manual to decide what operations you need to perform when encrypting your data.
  If you need more general information then, as a starting point, there is an electronic book at http://www.cacr.math.uwaterloo.ca/hac/ and of course there is the JCE specification.

• Encrypting data and using a funtion

  I am using dbms_obfuscation_toolkit.DESEncrypt
  This is a procedure. so if i need to encrypt data, I have to do it row by row. I actually need to update records to make them encrypted so its
  cursor
  run encrypt procedure
  update
  this is really slow.
  anything that is a function so I can use it directly in an update clause? anything faster?

  With a row by row approach there is no other way, you will have to encrypt one by one if this isn't already encrypted. Since you are on 10gR2, you could consider using TDE (Transparent Data Encryption).
  Now you said you want to pull it from production, does it mean that the data will live unencrypted, then in order for you to transport it, do you have to encrypt and then decrypt it? TDE could be a solution, using it along with backup techniques too.
  ~ Madrid
  http://hrivera99.blogspot.com/

• How to cancel filevault encryption process midway, since it is demanding 12 hours

  After upgrading to OS-X Yosemite version 10.10, I enabled filevault encryption option. Since then whenever I connect to the electric power, the disk starts encrypting procedure. I try to turn it off, it says to wait until the file encryption completes. Moreover the estimated remaining time for encryption is displayed as 12 hours. I just don't want it. kindly guide.
  Regards & Thanks
  Raj Vardhan Varma

  Hi,
  These documents talk about purgin WF_NOTIFICATIONS_OUT queue. But document i mentioned
  says.
  7. Try rebuilding the WF_NOTIFICATION_OUT queue if necessary
  The wfntfqup.sql script rebuilds the WF_NOTIFICATION_OUT queue by dropping and recreating
  that queue, removing pending notification messages from the WF_DEFERRED queue, and
  repopulating the WF_NOTIFICATION_OUT queue from the Oracle Workflow Notification System
  tables.
  Wfntfqup.sql Version >=115.9
  If you have implemented Oracle Alert and the WFNOTIFICATION_OUT queue contains any pending_
  alert e-mail messages, those messages must be processed before the queue can be rebuilt. The
  wfntfqup.sql script checks the queue for any alert e-mail messages and, if it finds any, the
  script returns an error message that specifies how many alert e-mail messages are pending
  and indicates that these messages must be processed before the script can run.
  Kindly suggest.

• IS Transperent Data Encryption is secure from DBA?

  Hi all,
  I want to encrypt some of data, for that i learn about Transperent Data Encryption, But i have doubt that TDE cant able to provide security against DBA.
  I want your valluable comment on this. and I want to know, is there any other way to secure my data From DBA except Database Vault?
  Thanks
  Message was edited by:
  Pratik Brahmbhatt

  Hi Sam,
  We use Oracle Applications 11.5.5 and 11.5.7 and DB 8.1.7.4.0 so TDE is not applicable for us.. but I think I got my objective (to encrypt and decrypt an attribute column) using the dbms_obfuscation_toolkit through the custom.pll
  There's only one thing to do, and its being a bit difficult for me to do it: how to capture the event KEY-EXIT (there/then is when I've planned to call the encrypt procedure)? That even is not in the "captured events list" for the custom.pll.
  Any ideas? How do you do when you want to make some operation in custom.pll corresponding with a KEY-EXIT event of a form?
  Thanks,
  Jose.

• Administrator Password Change

  Hi,
  After changing the default Administrator Password in the RPD, I ran the Cryptotools utility for both BI publisher and BI Scheduler to make sure that the BI Presentation services can identify the CredentialStore.
  There is another xml file, xmlp-server-config.xml in the OracleBIData\xmlp\xmp\admin\configuration folder, which has a property name "BI_SERVER_SECURITY_ADMIN_PASSWORD with its value being the default password for Administrator. The password here is in clear text, not encrypted. Is this how it's supposed to be?
  I do not see anywhere in the Docs. where there's an encryption procedure for this file.
  I certainly do not want to have this file with the password in clear text.
  Has anyone encountered this issue?
  Thanks,
  rkingmdu

  Yes, you're right (not encoded) ...
  <?xml version="1.0" encoding="UTF-8" standalone="no"?>
  <xmlpConfig xmlns="http://xmlns.oracle.com/oxp/xmlp">
     <property name="SAW_SERVER" value="OBIEESERVER"/>
     <property name="SAW_SESSION_TIMEOUT" value="90"/>
     <property name="DEBUG_LEVEL" value="exception"/>
     <property name="SAW_PORT" value="9704"/>
     <property name="SAW_PASSWORD" value="Administrator"/>
     <property name="SAW_PROTOCOL" value="http"/>
     <property name="SAW_VERSION" value="v4"/>
     <property name="SAW_USERNAME" value="Administrator"/>
  <property name="SAW_URL_SUFFIX" value="analytics/saw.dll"/>
  <property name="SECURITY_MODEL" value="BI_SERVER"/>
  <property name="BI_SERVER_SECURITY_DRIVER" value="oracle.bi.jdbc.AnaJdbcDriver"/>
  <property name="BI_SERVER_SECURITY_URL" value="jdbc:oraclebi://OBIEESERVER:9703/"/>
  <property name="BI_SERVER_SECURITY_ADMIN_USERNAME" value="Administrator"/>
  <property name="BI_SERVER_SECURITY_ADMIN_PASSWORD" value="Administrator"/>
  </xmlpConfig>But When I change the security setting in Admin/Security Configuration/Security Model, I obtain this one :
  <xmlpConfig xmlns="http://xmlns.oracle.com/oxp/xmlp">
     <property name="SUPERUSER_PASSWORD" value="BB198AA2C734E2A41B2ADB5600A2C1B31C56DE634CF9"/>
     <property name="SUPERUSER_USERNAME" value="Superuser"/>
     <property name="GUEST_FOLDER" value="false"/>
     <property name="SAW_SERVER" value="NGERARD"/>
     <property name="SAW_USERNAME" value="Administrator"/>
     <property name="SAW_VERSION" value="v4"/>
     <property name="ENABLE_SUPERUSER" value="true"/>
     <property name="BI_SERVER_SECURITY_ADMIN_PASSWORD_ENC" value="5558C0D0CB4782B8795DE6C963D59736"/>
     <property name="BI_SERVER_SECURITY_ADMIN_USERNAME" value="Administrator"/>
     <property name="DEBUG_LEVEL" value="exception"/>
     <property name="BI_SERVER_SECURITY_URL" value="jdbc:oraclebi://localhost:9704/ "/>
     <property name="SAW_SESSION_TIMEOUT" value="90"/>
     <property name="BI_SERVER_SECURITY_DRIVER" value="oracle.bi.jdbc.AnaJdbcDriver"/>
     <property name="SAW_PORT" value="9704"/>
     <property name="SAW_PROTOCOL" value="http"/>
     <property name="SAW_URL_SUFFIX" value="analytics/saw.dll"/>
     <property name="SECURITY_MODEL" value="BI_SERVER"/>
     <property name="SAW_PASSWORD_ENC" value="5558C0D0CB4782B8795DE6C963D59736"/>
  </xmlpConfig>And don't copy my passwsord ;-)
  Success
  Nico

• Oracle upgrade problem from 8.1.6.2.0 to 9.2.0.3.0

  We have upgraded our database to version 9.2.0.3.0 from version 8.1.6.2.0. Everything is fine accept a proprietory encryption package that utilises the UTL_RAW package and stores working variables in a PL/SQL Record structure consisting of 6 RAW(4) fields.
  When we execute the encryption procedure on version 9 of the database it returns a different response to when we execute the procedure on version 8. Any help greatly appreciated.

  We have upgraded our database to version 9.2.0.3.0 from version 8.1.6.2.0. Everything is fine accept a proprietory encryption package that utilises the UTL_RAW package and stores working variables in a PL/SQL Record structure consisting of 6 RAW(4) fields.
  When we execute the encryption procedure on version 9 of the database it returns a different response to when we execute the procedure on version 8. Any help greatly appreciated.

• DBMS_CRYPTO error

  Hi
  I have problem using dbms_crypto package.
  If I execute this code:
  declare
    c_text clob := to_clob('TEST TEXT');
    b_result blob;
    function crypt (ac_text clob) return blob as
       secret_key   RAW (32) := utl_raw.cast_to_raw('12345678901234567890123456789012');
       crypt_type   PLS_INTEGER := DBMS_CRYPTO.ENCRYPT_AES256 + DBMS_CRYPTO.CHAIN_CBC + DBMS_CRYPTO.PAD_PKCS5;
       crypted_text blob;
    BEGIN
       DBMS_CRYPTO.ENCRYPT(crypted_text, ac_text, crypt_type, secret_key, null);
       return crypted_text;
    END crypt;
  begin
    b_result := crypt(c_text);
  end;
  /it would return error:
  ORA-01405: fetched column value is NULL
  My database is 10.2.0.4 64bit...
  Any idea what might be wrong?

  I am pasting you real-life application encrypt procedure (slightly modified) that may help you (you will need first to convert your CLOB data to VARCHAR2)
  FUNCTION encrypt(text IN VARCHAR2, secretKey IN VARCHAR2) RETURN RAW IS
  encryptedText RAW(2000);
  BEGIN
  encryptedText := DBMS_CRYPTO.ENCRYPT(UTL_I18N.STRING_TO_RAW(text, 'AL32UTF8'), dbms_crypto.AES_CBC_PKCS5, UTL_I18N.STRING_TO_RAW(secretKey));
  RETURN encryptedText;
  END encrypt;

• SQL Server 7.0 = 8i

  I am going to to migrate small SQL Server 7.0 Database to Oracle
  8i. I have around 280 procedures. Most of them are in encrypted
  form. Is Migration Workbench migrates encrypted procedures also.
  If not what steps I have to take before migrating...
  null

  Hi Vijay,
  I haven't encountered encrypted stored procedures before so I
  don't know.
  Try the Workbench and see if that works. If it doesn't, there may
  be a way in SQL Server 7.0 to un-encrypt the stored procedures.
  Please let me know how you get on by posting to this forum.
  Regards
  John
  Vijay (guest) wrote:
  : I am going to to migrate small SQL Server 7.0 Database to
  Oracle
  : 8i. I have around 280 procedures. Most of them are in encrypted
  : form. Is Migration Workbench migrates encrypted procedures
  also.
  : If not what steps I have to take before migrating...
  Oracle Technology Network
  http://technet.oracle.com
  null

• HELP WITH BLOB CRYPTING

  HI Guys,
  i can't get the dbms_crypto procedure to work correctly:
  i've a table where i upload data via apex, all stored in a blob table of mine and the download proc as well to download file: i can't crypt the blob file.
  my custom proc is triggered:
  As you can see only update, such it doesn't crypt nothing ;-(
  I've copied only the encrypt proc such the problem has to be similare for the other proc as well.
  Probably the error is using the same blob as source as destination, however i can't fix this, and i think is possible to 'work' on the same blob.
  Note that only for test purpose i have copied the blob from another col of the same table (BLOB_CONTENT_NON_CRYPT), so my col has data in it.
  create or replace TRIGGER BI_BNFOWNFL BEFORE INSERT ON BNFOWNFL
  FOR EACH ROW
  DECLARE
  B BLOB;
  begin
  IF INSERTING THEN
  select "BNFOWNFL_SEQ".nextval into :NEW.ID from dual;
  END IF;
  IF UPDATING THEN
  B:=:OLD.BLOB_CRYPTED;
  P_ENCRYPT.encrypt_ssnBLOB(B);
  :NEW.BLOB_CRYPTED:=B;
  NULL;
  END IF;
  end;
  MY PROC IS AS FOLLOWS:
  PROCEDURE encrypt_ssnBLOB( p_ssn IN OUT NOCOPY BLOB);
  PROCEDURE decrypt_ssnBLOB( p_ssn IN OUT NOCOPY BLOB);
  G_KEY RAW(32) := UTL_I18N.STRING_TO_RAW( 'ZORRO', 'AL32UTF8' );
  PROCEDURE encrypt_ssnBLOB( p_ssn IN OUT NOCOPY BLOB )
  IS
  BEGIN
  dbms_crypto.encrypt
  ( dst => p_ssn,
  src => p_ssn,
  typ => DBMS_CRYPTO.DES_CBC_PKCS5,
  key => G_KEY );
  END encrypt_ssnBLOB;
  Thanx a lot for help

  Hi, Marcello, glad to hear - you got the process working, but after i reread your post ( if i understood you correctly ) - i have some doubts on your procedure - could you get the original documents by decrypting your encrypted documents successfully ?
  The main problem with it in my opinion - you can't pass to the encrypt procedure the same lob locator for source and for destination. Docs says - the output lob will be overwritten and it will be indeed (http://download-uk.oracle.com/docs/cd/B19306_01/appdev.102/b14258/d_crypto.htm#sthref1552).
  To demonstrate this i set up some examples - in the first part i encrypt using the same lob locator passed to the encrypt procedure, in the second i created a trigger which works properly ( i.e. the encrypted part can be decrypted again, the encryption part of trigger body can/should be placed in the procedure of course). Another issue - with assignment like A_LOB := :NEW.LOB_COLUMN within the trigge - on this way your new variable points to the same lob as :NEW.LOB_COLUMN and therefor can not be used as destination lob parameter for the encrypt procedure - that is why i used in my example DBMS_LOB.COPY procedure.
  scott@ORA102> DECLARE
  2 l_blob_1 BLOB;
  3 l_blob_2 BLOB;
  4 G_KEY RAW(32) := UTL_I18N.STRING_TO_RAW( lpad('ZORRO',8), 'AL32UTF8' );
  5 BEGIN
  6 dbms_lob.createtemporary(l_blob_1,TRUE);
  7 dbms_lob.createtemporary(l_blob_2,TRUE);
  8 l_blob_1 := UTL_I18N.STRING_TO_RAW('Hello, world!','AL32UTF8');
  9 l_blob_2 := UTL_I18N.STRING_TO_RAW('God save the queen','AL32UTF8');
  10 dbms_output.put_line('1 LOB content before encryption: '||rawtohex(l_blob_1));
  11 dbms_output.put_line('2 LOB content before encryption: '||rawtohex(l_blob_2));
  12 dbms_crypto.encrypt( dst => l_blob_1,src => l_blob_1,typ => DBMS_CRYPTO.DES_CBC_PKCS5,key => G_KEY );
  13 dbms_crypto.encrypt( dst => l_blob_2,src => l_blob_2,typ => DBMS_CRYPTO.DES_CBC_PKCS5,key => G_KEY );
  14 dbms_output.put_line('1 LOB content after encryption: '||rawtohex(l_blob_1));
  15 dbms_output.put_line('2 LOB content after encryption: '||rawtohex(l_blob_2));
  16 -- now try to decrypt the "encrypted" blob - it seems, we got the junk
  17 -- to accomplish it - l_blob_1 should be properly encrypted form of l_blob_2:
  18 dbms_crypto.decrypt( dst => l_blob_1,src => l_blob_2,typ => DBMS_CRYPTO.DES_CBC_PKCS5,key => G_KEY );
  19 dbms_output.put_line('2 LOB content after PROPER decryption: '||rawtohex(l_blob_1));
  20 END;
  21 /
  1 LOB content before encryption: 48656C6C6F2C20776F726C6421
  2 LOB content before encryption: 476F6420736176652074686520717565656E
  1 LOB content after encryption: 501A81E5BE464DB3
  2 LOB content after encryption: 501A81E5BE464DB3
  2 LOB content after PROPER decryption:
  PL/SQL procedure successfully completed.
  scott@ORA102>
  scott@ORA102> DROP TABLE test_encryption;
  Table dropped.
  scott@ORA102> CREATE TABLE test_encryption(ID NUMBER,plain_blob BLOB,encrypted_blob BLOB);
  Table created.
  scott@ORA102> INSERT INTO test_encryption(ID,plain_blob,encrypted_blob)
  2 VALUES(1,rawtohex('Hello World!'),NULL);
  1 row created.
  scott@ORA102> CREATE OR REPLACE TRIGGER trg_test_encryption
  2 BEFORE UPDATE ON test_encryption
  3 FOR EACH ROW
  4 DECLARE
  5 G_KEY RAW(32) := UTL_I18N.STRING_TO_RAW( lpad('ZORRO',8), 'AL32UTF8' );
  6 l_blob BLOB;
  7 BEGIN
  8 dbms_lob.createtemporary(:NEW.encrypted_blob,TRUE);
  9 dbms_lob.open(:NEW.encrypted_blob,dbms_lob.lob_readwrite);
  10 dbms_lob.open(:NEW.plain_blob,dbms_lob.lob_readonly);
  11 dbms_lob.copy(:NEW.encrypted_blob,:NEW.plain_blob,dbms_lob.getlength(:NEW.plain_blob),1,1);
  12 dbms_crypto.encrypt( dst => :NEW.encrypted_blob,src =>:NEW.plain_blob ,typ => DBMS_CRYPTO.DES_CBC_PKCS5,key => G_KEY );
  13 END;
  14 /
  Trigger created.
  scott@ORA102> UPDATE test_encryption SET ID=ID;
  1 row updated.
  scott@ORA102> COMMIT;
  Commit complete.
  scott@ORA102> col plain for a20
  scott@ORA102> col enc for a20
  scott@ORA102>
  scott@ORA102> SELECT
  2 dbms_lob.getlength(plain_blob) len_plain,
  3 dbms_lob.substr(plain_blob,dbms_lob.getlength(plain_blob),1) plain,
  4 dbms_lob.getlength(encrypted_blob) len_enc,
  5 dbms_lob.substr(encrypted_blob,dbms_lob.getlength(encrypted_blob),1) enc
  6 FROM test_encryption;
  LEN_PLAIN PLAIN LEN_ENC ENC
  12 48656C6C6F20576F726C 16 6784483CC01870D1BE58
  6421 FB64909783DB
  scott@ORA102>
  scott@ORA102> -- now try to decrypt the encrypted value
  scott@ORA102> DECLARE
  2 G_KEY RAW(32) := UTL_I18N.STRING_TO_RAW( lpad('ZORRO',8), 'AL32UTF8' );
  3 l_src BLOB;
  4 l_tgt BLOB;
  5 BEGIN
  6 dbms_lob.createtemporary(l_tgt,TRUE);
  7 SELECT encrypted_blob INTO l_src FROM test_encryption FOR UPDATE;
  8 dbms_lob.open(l_tgt,dbms_lob.lob_readwrite);
  9 dbms_lob.open(l_src,dbms_lob.lob_readonly);
  10 dbms_crypto.decrypt( dst => l_tgt,src => l_src ,typ => DBMS_CRYPTO.DES_CBC_PKCS5,key => G_KEY );
  11 dbms_output.put_line(utl_raw.cast_to_varchar2(l_tgt));
  12 ROLLBACK;
  13 END;
  14 /
  Hello World!
  PL/SQL procedure successfully completed.
  Best regards
  Maxim

• A WORKING EXAMPLE ABOUT CRYPTING / DECRYPTING SOME DOC

  Hi guys,
  i'm trying to use this DBMS_CRYPTO to crypt. I don't know if it works or not.
  i've found an oracle security guide dated 2003 and tried as well to use the procedure DBMS_CRYPTO with no success.
  My goal is to cript file as pdf / doc and so on. Now i'm very confused with this DBMS_CRYPTO library.
  How can i achieve this without having to study 50 pages or more of documentation?
  Thanx a lot

  Hi to all,
  My blob encryption procedure work smooth: PL /SQL DEVELOPER tricked me with a one of his refresh bugs......
  1 day and 1/2 lost....
  Thanx a lot to all of you trying to help

• N8 TV Out not working

  I bought a HDMI to VGA cable on Ebay and when I plug it in (via the Nokia mini HDMI adaptor) nothing happens.
  Also I have a CA-75U cable that goes in the headphone jack.  Apparently that is supposed to work also.  When I plug it in I get the headphone symbol showing but no video-out happens.
  I never see the TV-OUT icon showing on the phone at any stage.
  Any ideas?  Does my phone have a hardware problem??

  I have the same issue. Have a Nokia N8 and just got the Nokia Video-Out Cable CA-75U, but nothing happens. Any encrypted procedure to make it work, please?
  Thanks in advance.
  CLTSchwarz wrote:
  I got the CA-75U cable working!  The yellow cord has to be plugged in first.
  However still no joy with the HDMI to VGA cable.
  Also I've tried the yellow cord fist but still nothing happens.
  CLTSchwarz wrote:
  I got the CA-75U cable working!  The yellow cord has to be plugged in first.
  However still no joy with the HDMI to VGA cable.