Testing network data encryption

Similar Messages

• Is it possible to perform network data encryption between Oracle 11g databases without the advance security option?

  Is it possible to perform network data encryption between Oracle 11g databases without the advance security option?
  We are not licensed for the Oracle Advanced Security Option and I have been tasked to use Oracle Network Data Encryption in order to encryption network traffic between Oracle instances that reside on remote servers. From what I have read and my prior understanding this is not possible without ASO. Can someone confirm or disprove my research, thanks.

  Hi, Srini Chavali-Oracle
  As for http://www.oracle.com/technetwork/database/options/advanced-security/advanced-security-ds-12c-1898873.pdf?ssSourceSiteId… ASO is mentioned as TDE and Redacting Sensitive Data to Display. Network encryption is excluded.
  As for Network Encryption - Oracle FAQ (of course this is not Oracle official) "Since June 2013, Net Encryption is now licensed with Oracle Enterprise Edition and doesn't require Oracle Advanced Security Option." Could you clarify this? Thanks.

• About Network Data Encryption

  Hi,
  I have a DataBase Oracle 10g, I'm configuring the Advanced Security, and I would like to know if it's posible to configure the server in order to refuse the connections which do not have configured the encryption option that I have defined in the server.
  For example: in the server, the sqlnet.ora contain that:
  sqlnet.crypto_seed="dsdfrpdstrpgrmmpbmprthmtpommbmptbmpotpre"
  sqlnet.encryption_client = required
  sqlnet.encryption_types_client = (RC4_40)
  but, if the client don't have defined nothing in his sqlnet.ora can to connect with the DataBase.
  Can someone help me?
  Thanks in advance,
  Fernando.

  Roger22 wrote:
  Ok, thanks for reply
  And one more question:
  If i have
  alter system set encryption key authenticated by "ImOracle";then the encryption key is ImOracle, like the password for the wallet too? The password for the wallet is ImOracle too?
  I found this here: http://oracleflash.com/26/Oracle-10g-Transparent-Data-Encryption-examples.html
  (This creates a wallet at the location defined in the sqlnet.ora, sets the password for the wallet for TDE to retrieve the master key for encryption of table keys used to encrypt values in the tables.)First of all, try to stick with the official oracle documentation website, http://tahiti.oracle.com . Now, the encryption key is the key that is used to encrypt the data of the columns. The above command is setting the master key for the column encryption. Please see,
  http://download.oracle.com/docs/cd/E11882_01/network.112/e10746/asotrans.htm#ASOAG9525
  For the wallet, you set up a password when you set up the wallet using the oracle wallet manager so that should have prompted you for a password.
  HTH
  Aman....

• Listener Start Problem with TDE (Transparent Data Encryption)

  i am testing Transparent Data Encryption in Oracle 10g by using the following link
  http://oracle-base.com/articles/10g/TransparentDataEncryption_10gR2.php
  Before Implementing the TDE listener was running fine but after implementation of TDE the listener was unable to start
  Please check the steps which i follow
  Step1-
  specify the ENCRYPTION_WALLET_LOCATION parameter in the sqlnet.ora file, now SQLNET.ora file looks like the following
  SQLNET.AUTHENTICATION_SERVICES= (NTS)
  NAMES.DIRECTORY_PATH= (TNSNAMES, EZCONNECT)
  ENCRYPTION_WALLET_LOCATION=
  (SOURCE=(METHOD=FILE)(METHOD_DATA=
  (DIRECTORY=D:\oracle\product\10.2.0\wallet\)))
  please check the contents of listener.ora file,i didn't make any configuration changes for listener before or after implementation of TDE
  SID_LIST_LISTENER =
  (SID_LIST =
  (SID_DESC =
  (SID_NAME = PLSExtProc)
  (ORACLE_HOME = D:\oracle\product\10.2.0\db_1)
  (PROGRAM = extproc)
  LISTENER =
  (DESCRIPTION_LIST =
  (DESCRIPTION =
  (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1))
  (ADDRESS = (PROTOCOL = TCP)(HOST = shakeel-pc.lhr.inov8.com.pk)(PORT = 1521))
  Step2-
  CONN sys/password AS SYSDBA
  ALTER SYSTEM SET ENCRYPTION KEY AUTHENTICATED BY "myPassword";
  TDE implemented successfuly implemented.
  But when i try to stop/start listener
  C:\>lsnrctl status
  LSNRCTL for 32-bit Windows: Version 10.2.0.1.0 - Production on 06-JUN-2008 05:44
  :30
  Copyright (c) 1991, 2005, Oracle. All rights reserved.
  Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC1)))
  STATUS of the LISTENER
  Alias LISTENER
  Version TNSLSNR for 32-bit Windows: Version 10.2.0.1.0 - Produ
  ction
  Start Date 05-JUN-2008 22:40:14
  Uptime 0 days 7 hr. 4 min. 16 sec
  Trace Level off
  Security ON: Local OS Authentication
  SNMP OFF
  Listener Parameter File D:\oracle\product\10.2.0\db_1\network\admin\listener.o
  ra
  Listener Log File D:\oracle\product\10.2.0\db_1\network\log\listener.log
  Listening Endpoints Summary...
  (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(PIPENAME=\\.\pipe\EXTPROC1ipc)))
  (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=shakeel-pc.lhr.inov8.com.pk)(PORT=15
  21)))
  Services Summary...
  Service "PLSExtProc" has 1 instance(s).
  Instance "PLSExtProc", status UNKNOWN, has 1 handler(s) for this service...
  Service "orcl" has 1 instance(s).
  Instance "orcl", status READY, has 1 handler(s) for this service...
  Service "orclXDB" has 1 instance(s).
  Instance "orcl", status READY, has 1 handler(s) for this service...
  Service "orcl_XPT" has 1 instance(s).
  Instance "orcl", status READY, has 1 handler(s) for this service...
  The command completed successfully
  C:\>lsnrctl stop
  LSNRCTL for 32-bit Windows: Version 10.2.0.1.0 - Production on 06-JUN-2008 05:44
  :35
  Copyright (c) 1991, 2005, Oracle. All rights reserved.
  Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC1)))
  The command completed successfully
  C:\>lsnrctl start
  [i]LSNRCTL for 32-bit Windows: Version 10.2.0.1.0 - Production on 06-JUN-2008 05:44
  :40
  Copyright (c) 1991, 2005, Oracle. All rights reserved.
  Starting tnslsnr: please wait...
  TNSLSNR for 32-bit Windows: Version 10.2.0.1.0 - Production
  System parameter file is D:\oracle\product\10.2.0\db_1\network\admin\listener.or
  a
  Log messages written to D:\oracle\product\10.2.0\db_1\network\log\listener.log
  Error listening on: (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PARTIAL=yes)(QUEUESI
  ZE=1))
  No longer listening on: (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(PIPENAME=\\.\pipe\E
  XTPROC1ipc)))
  TNS-12560: TNS:protocol adapter error
  TNS-00583: Valid node checking: unable to parse configuration parameters
  Listener failed to start. See the error message(s) above...
  To start the listener i have to close wallet as
  1- SQL>conn sys as sysdba
  ALTER SYSTEM SET WALLET CLOSE;
  2- Replace the SQLNET.ora file as previous ,now SQLNET.ora contains
  SQLNET.AUTHENTICATION_SERVICES= (NTS)
  NAMES.DIRECTORY_PATH= (TNSNAMES, EZCONNECT)
  Now if i start the listener then the listener was started succesfuly
  Please suggest why listener is not being start with TDE?

  I have the same problem. I'm testing TDE using Oracle 11gR1. After setting the parameter encryption_wallet_location and restart the listener, the listener failed to start. The error is exactly the same
  TNS-12560: TNS:protocol adapter error
  TNS-00583: Valid node checking: unable to parse configuration parameters
  By removing the parameter encryption_wallet_location, the listner can be started successfully.
  Anyone can help?

• Data Encryption using DBMS_OBSFUCATION_PACKAGE

  Hello Friends,
  I want to encrypt EMPNAME column data in EMP table using
  DBMS_OBSFUCATION_PACKAGE. I am not getting much help for this
  package. can anybody suggest me some sites concerning
  information on package ?
  Thanx.
  Adi

  try this one.
  I am pasting the procedure.
  run catobtk.sql from sys
  DECLARE
  input_string VARCHAR2(16) := 'SRINIVAS';
  raw_input RAW(128) := sys.UTL_RAW.CAST_TO_RAW(input_string);
  #key_string VARCHAR2(16) := 'keepthesecretnum';
  key_string VARCHAR2(16) := 'abcdefghijklmnop';
  raw_key RAW(128) := sys.UTL_RAW.CAST_TO_RAW(key_string);
  encrypted_raw RAW(2048);
  encrypted_string VARCHAR2(2048);
  decrypted_raw RAW(2048);
  decrypted_string VARCHAR2(2048);
  error_in_input_buffer_length EXCEPTION;
  PRAGMA EXCEPTION_INIT(error_in_input_buffer_length, -28232);
  INPUT_BUFFER_LENGTH_ERR_MSG VARCHAR2(100) :=
  '*** DES INPUT BUFFER NOT A MULTIPLE OF 8 BYTES - IGNORING
  EXCEPTION ***';
  double_encrypt_not_permitted EXCEPTION;
  PRAGMA EXCEPTION_INIT(double_encrypt_not_permitted, -28233);
  DOUBLE_ENCRYPTION_ERR_MSG VARCHAR2(100) :=
  '*** CANNOT DOUBLE ENCRYPT DATA - IGNORING EXCEPTION ***';
  -- 1. Begin testing raw data encryption and decryption
  BEGIN
  dbms_output.put_line('> ========= BEGIN TEST RAW DATA
  =========');
  dbms_output.put_line('> Raw input : ' ||
  sys.UTL_RAW.CAST_TO_VARCHAR2(raw_input));
  BEGIN
  sys.dbms_obfuscation_toolkit.DESEncrypt(input => raw_input,
  key => raw_key, encrypted_data => encrypted_raw );
  sys.dbms_output.put_line('> encrypted hex value : ' ||
  rawtohex(encrypted_raw));
  sys.dbms_obfuscation_toolkit.DESDecrypt(input => encrypted_raw,
  key => raw_key, decrypted_data => decrypted_raw);
  dbms_output.put_line('> Decrypted raw output : ' ||
  sys.UTL_RAW.CAST_TO_VARCHAR2(decrypted_raw));
  dbms_output.put_line('> ');
  if sys.UTL_RAW.CAST_TO_VARCHAR2(raw_input) =
  sys.UTL_RAW.CAST_TO_VARCHAR2(decrypted_raw) THEN
  dbms_output.put_line('> Raw DES Encyption and Decryption
  successful');
  END if;
  EXCEPTION
  WHEN error_in_input_buffer_length THEN
  dbms_output.put_line('> ' || INPUT_BUFFER_LENGTH_ERR_MSG);
  END;
  dbms_output.put_line('> ');
  END;

• WPA2 network authentication with AES Data Encryption

  I have tried unsuccessfully to connect with my university's network....they are running WPA2 with AES data encryption....authentication is Protected EAP (PEAP). Any ideas of the iPhone can connect to something like this?

  You've confirmed my suspicion. We use WPA2-Personal with AES Encryption as well and I just discovered after having bought my iPhone last night, that it will not connect. And yet every other WiFi device I own, including two Windows computers have no issue connecting to the same Access Point. Obviously the issue is with the iPhone and now I'll have to contact Apple to learn how the intend to resolve it.

• Encrypt all Network data problems

  Hi all,
  I am trying to securly connect to my friends computer over the internet.
  We are both using 10.4 and both running ARD.
  We can successfully connect and control each others computer when ARD security is set to 'encrypt all keystrokes and passwords' but the connection fails to connect when we try and use 'encrypt all network data'.
  We have port 22 open on our routers and also have selected the checkbox to allow remote login in the system preferences.
  I can connect via ssh to his account enabled for ARD and use terminal with normal UNIX restrictions, but we can't seem to get a successful connection with the full security settings in ARD.
  An anyone suggest what we may be doing wrong ?
  Thanks in advance
  mjharps

  Anyone else noticing this behavior?

• FMS 3.5 says 'Bad network data': error in handling RTMP extended timestamps / chunkSize?

  Hello all,
  For a client, I am working on a project where a live RTMP stream is published to an Adobe FMS 3.5.6 server from a java application, using Red5 0.9.1 RTMPClient code.
  This works fine, until the timestamp becomes higher than 0xFFFFFF after 4.6 hours, and the RTMP extended timestamp field starts being used. I have already found: when the extended timestamp was written after the header, the last 4 bytes of the data were being cut off. I have fixed this locally, and now the data being sent seems to me to be conformant to the spec. However, FMS still throws an error message in the core log and then kills the connection from the Red5 client. Here is the error message:
  This is the error message:
  2011-06-03     14:28:02     13060     (e)2611029     Bad network data; terminating connection : chunkstream error:message length 11893407 is longerthan max rtmp packet length     -
  2011-06-03     14:28:02     13060     (e)2631029     Bad network data; terminating connection : (Adaptor: _defaultRoot_, VHost: _defaultVHost_, IP: 127.0.0.1, App: live/_definst_, Protocol: rtmp, Client: 5290168480216205379, Handle: 2147942405) : 05 FF FF FF 00 13 = 09 01 00 00 00 01 00 01 01 ' 01 00 00 00 00 00 13 4 09 0 00 00 01 ! 9A & L 0F FA F6 12 , B4 A6 CE H 8A AB DC G BB d k 1B 9F ) 13 13 D2 9A E5 t 8 B8 8D 94 ! 8A AE F6 AF } " U 0 D3 Q EF FF ~ 8D 97 D9 FF BE A3 F3 C9 97 o 9D # F9 7F h A4 F7 } / FB & F1 DC 9C BF   BD D3 E7 CA 97 FE E2 B9 E4 F7 9E 1A F6 BA } C9 w FC _ / / w FE n EF D7 P 9C F4 BE 82 8E F7 | BE 97 B4 BB D7 FE ED I / FB D1 93 9A F9 X \ 85 BD DD I E3 4 E8 M 13 D3 " ) BE A9 92 E5 83 D4 B4 12 DE D5 A3 E6 F4 k DE BF Q 3 A0 g r A4 f D9 BD w * } F7 r 8A S 2 . AB BD EE ^ l f AF E1 0B $ AF 9D D7 - BF E8 ! D3 } D3 i E3 B8 F2 M A8 " B1 A5 EF s ] A5 BC 96 E5 u e X q D2 F1 r F9 i 92 b EE Z d F9 * A6 BB FD 17 w 4 DD 3 o u EB ] ] EF FE B5 B1 0A F2 A0 DD FD B2 98 DF E8 e F6 CB FD 96 V % A5 D5 k ] FD w EF AF k v AA E8 ! 9F / w BE FA 9A _ E F2 D3 , ? 17 } AD 7 EC B3   } 07 B5 | z { { A5 = 11 90 CF BF ; 4 FE EF 95 F7 E7 DF B9 , AF z 91 CF C9 BD DE CB { F5 17 } F2 E5 D7 DF z E6 [ 96 > Y m 9F EB AF DD D8 E8 v B9 A8 E9 % A7 | 1 CF 8B D Z k N DF F8 N FA S R FE . ~ CB A 9 E1 ) 8F 8E BB EC c 6 13 F1 AC FD FD FC 8A F7 F3 K B9 FA ^ / A4 FC B9 AA F6 DE C2 [ 1A E c r B3 BF E5 EC B5 x 94 FD . A9 t I Q % EA EC DE | K FE z A4 97 F9 " 1 0F CA FB F5 F5 p 9E 99 3 - ; B8 F4 F1 FF t A3 EC BC # DE AC 91 13 19 o < 06 F5 FD 7F 7 _ $ D B t B5 0D 8A C1 C1 BA 0B FE DB B7 83 _ } BD z F7 CB { FC M A9 8D = D5 B1 < 85 = EF E1 ; BA H y FC BC B4 C A2 D9 ` e E4 94 H 5 13 ' 93 93 8E E C2 1C R 97 9 X B7 FF 10 9F { ) F1 CF AB AC ] EE H A2 DE D3 C5 m F6 K A2 A7 A2 89 D2 z EB DF 97 ^ k 9E 99 BB E7 B6 97 w { ~ + C7 B2 } FE ' C4 | B6 o H DD r A8 9F DC FF F9 Q b l 93 T B6 EE FF 11 j CD s P C F1 3 R I F8 D8 R 9D 93 AA D5 + DE FC BE " B9 E1 ` CB BD 0F F5 C7 AA w CF 8D p 9A F7 g f N FF 84 B7 K Q 93 g E1 - D3 s } w v AE 96 98 ED CF BA E9 2 . f 99 95 97 o 13 CA F7 s e $ F4 B5 15 C4 A8 DE M F7 w \ 8D 00 C6 C2 b D3 / 7 w F2 ' BF CD 89 FF > D7 FB BC A2 S N FB A5 CD AF D3 F9 9D DF AE B5 17 CF 9D B7 , B9 9 ^ 7F [ 93 84 F7 } _ EA DF u \ 99 Z t E CA M EF 7 " AD FE 92 9E n 7F EB D8 C { 99 8B 9E w H BF B1 | g 9F F3 FA E1 - E5 CB BB x CF p 8B D2 w v EF w FA E2 F7 s C5 AC $ FC B4 DB BE G E4 DC F0 A0 96 F3 ! t DC FF % A5 CB A4 ^ AB D2 BD E7 9A E ' 08 + AF U 17 EB 8A w A7 N E4 A5 x 93 12 _ - ; 09 DD DF m 11 BE w \ } BA D3 t BC D9 97 9B C5 7F D8 H F1 D 7 8A ^ FA n F0 B8 W E6 84 5 - 8 B5 h o C4 F7 83 P 88 CB AE m t BB L 95 A9 s 90 A2 Y o DF K _ / l D2 D1 C9 91 ' E4 BD / / D 97 m BB E7 14 93 % C5 ; DD CF D8 : ~ B5 4 F FA U F0 8F w w DC FD 83 FC 13 EF w p DA A5 07 _ * - 1D 14 9D D5 84 F E6 F0 FF E4 15 w n A5 9F DE d AE F5 " - f D2 AE 96 1F # FA F1 x C1 L DF l M 06 8A E4 z DB 17 BA l DA e 15 CD 85 86 1F 09 82 h ] C6 { E7 C5 AF Z C5 B0 83 v D9 03 FC / ~      -
  The message for which the hex dump is displayed, is a video message of size 4925 bytes. Below is the basic logging in my application:
  *** Event sent to RTMP connector: Video - ts: 16777473 length: 4925. Waiting time: -57937, event timestamp: 16777473
  14:28:02.045 [RtmpPublisher-workerThread] DEBUG o.r.s.s.consumer.ConnectionConsumer - Message timestamp: 16777473
  14:28:02.045 [RtmpPublisher-workerThread] DEBUG o.r.s.n.r.codec.RTMPProtocolEncoder - Channel id: 5
  14:28:02.045 [RtmpPublisher-workerThread] DEBUG o.r.s.n.r.codec.RTMPProtocolEncoder - Last ping time for connection: -1
  14:28:02.045 [RtmpPublisher-workerThread] DEBUG o.r.s.n.r.codec.RTMPProtocolEncoder - Client buffer duration: 0
  14:28:02.046 [RtmpPublisher-workerThread] DEBUG o.r.s.n.r.codec.RTMPProtocolEncoder - Packet timestamp: 16777473; tardiness: -30892; now: 1307104082045; message clock time: 1307104051152, dropLiveFuturefalse
  14:28:02.046 [RtmpPublisher-workerThread] DEBUG o.r.s.n.r.codec.RTMPProtocolEncoder - !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!12b Wrote expanded timestamp field
  14:28:02.046 [NioProcessor-22] DEBUG o.r.server.net.rtmp.BaseRTMPHandler - Message sent
  I have captured the entire frame containing this message with wireshark, and annotated it a bit. You can find it here:
  http://pastebin.com/iVtphPgU
  The video message of 4925 bytes (hex 00 13 3D) is cut up into chunks of 1024 bytes (chunkSize 1024 set by Red5 client and sent to FMS). Indeed, after the 12-byte header and the 4-byte extended timestamp, there are 1024 bytes before the 1-byte header for the next chunk (hex C5). The chunks after that also contain 1024 bytes after the chunk header. This appears correct to me (though please correct me if I'm wrong).
  When we look at the error message in the core log, the hex dump displayed also contains 1024 bytes, but it starts from the beginning of the message header. The last 16 bytes of the message chunk itself are not shown.
  My question is this: is the hex dump in the error message always capped to 1024 bytes, or did FMS really read too little data?
  Something that may be of help, is the reported 'too long' message length 11893407. This corresponds to hex B5 7A 9F, which can also be found in the packet, namely at row 0c60 (I've annotated it as [b5 7a 9f]. This location is exactly 16 bytes after the start of the 4th chunk data, not really a place to look for timestamps.
  My assumptions during this bug hunting session were the following (would be nice if someone could validate these for me):
  - message length, as specified in the RTMP 12 and 8-bit headers, defines the total number of data bytes for the message, NOT including the header of the first message chunk, its extended timestamp field, or the 1-byte headers for subsequent chunks. The behaviour is the same whether or not the message has an extended timestamp.
  - chunk size, as set by the chunkSize message, defines the total number of data bytes for the chunk, not incuding the header or extended timestamp field. The behaviour is the same whether or not the message has an extended timestamp.
  I believe I've chased this problem as far as I can without having access to the FMS 3.5 code, or at least being able to crank up the debug logging to the per-message level. I realize it's a pretty detailed issue and a long shot, but being able to publish a stream continuously 24/7 is critical for the project.
  I would be very grateful if someone could have a look at this hex dump to see if the message itself is correct, and if so, to have a look at how FMS3.5.6 handles this.
  Don't hesitate to ask me for more info if it can help.
  Thanks in advance
  Davy Herben
  Solidity

  Hello,
  It took a bit longer than expected, but I have managed to create a minimal test application that will reproduce the error condition on all machines I've tested on. The application will simply read an H264 file and publish it to an FMS as a live stream. To hit the error condition faster, without having to wait 4.6 hours, the application will add a fixed offset to all timestamps before sending it to the FMS.
  I have created two files:
  http://www.solidity.be/publishtest.jar : Runnable java archive with all libraries built in
  http://www.solidity.be/publishtest.zip : Zip file containing sources and libraries
  You can run the jar as follows:
  java -jar publishtest.jar <inputFile> <server> <port> <application> <stream> <timestampOffset>
  - inputFile: path to an H264 input video file
  - server: hostname or IP of FMS server to publish to
  - port: port number to publish to (1935)
  - application: application to publish to (live)
  - stream: stream to publish to (output)
  - timestampOffset: nr of milliseconds to add to the timestamp of each event, in hexadecimal format. Putting FFFFFF here will cause the server to reject the connection immediately, while FFFF00 or FFF000 will allow the publishing to run for awhile before the FMS kills it
  Example of a complete command line:
  java -jar publishtest.jar /home/myuser/Desktop/movie.mp4 localhost 1935 live output FFF000
  Good luck with the bug hunting. Let me know if there is anything I can help you with.
  Kind regards,
  Davy Herben

• Need suggestion for data encryption

  Hello Experts,
  I need your expert opinion on one of the data encryption method. We have some legal compliance to implement data encryption as listed below, lets say we have to apply encryption on 2 tables (1) TAB_A (2) TAB_B.
  (1) Need data encryption on the TAB_A & TAB_B for 2-3 columns and not the entire table.
  (2) Data should not be in readable format, if anyone connect to database and query the table.
  (3) We have reporting services on our tables but reporting services doesn't connect to our schema directly rather they connect to a different schema to which we have given the table Select grant.
  (4) Reports should work as it is, and users should see the data in readable format only.
  (5) There are batch processes which generates the data into these tables and we are not allowed to make any changes to these batch processes.
  This is a business need which has to be delivered. I explored various options such as VPDs, Data encryption methods etc but honestly none of these are serving our business need. There is also a limitation of encrypting data as data volume of quiet high (30TB DB) and generally users query the data on millions of records at a time. Also reports have very tight SLAs as well. If we create any encryption wrapper then decrypt will take longer in reports and will cause the SLA miss for reports.
  Could someone please suggest any better solution to me or if something is inbuilt in Oracle? We are using Oracle 11g.
  Regds,
  Amit.

  you can read about Transparent Data Encryption
  Check
  http://docs.oracle.com/cd/B28359_01/network.111/b28530/asotrans.htm

• Can the iOS Field Test app data be written to file with GPS coordinates of readings?

  I can run the Field Test app on my iPhone5 but I cannot automatically store the data revealed by the app.  Would it be possible to do this? and link the GPS coordinates to the data?  or is the network data not accessible from an app?

  Ask the App developer.  There is no such app native on the device.

• Using network data to detect DPI

  "Network transparency cuts both ways. It can be exploited to engage in surveillance of Internet service providers as well as Internet users. In order to better understand DPI use and the scope of its deployment, the project makes use of crowdsourced network monitoring data. So far, we have used data from a test known as Glasnost, which was developed by German researchers to detect blocking or throttling of BitTorrent and other peer to peer (P2P) file sharing protocols. The detailed workings of the Glasnost test are described in Dischinger, Marcon, et al (2010)."
  using network data to detect dpi
  Use tools running on M-Lab to test your Internet connection.

  John the point being that DPI would need to be used based on what the post says to keep it unthrottled.
  It's DPI that is the privacy concern not throtteling so BT's use of DPI which may be increasing is a concern not least since they have been known to run 'tests' of dubious legality before now (Phorm or some such as I recall)
  If my post was helpful then please click on the Ratings star on the left-hand side If the the reply answers your question fully then please select ’Mark as Accepted Solution’

• Tablespace data encryption

  HI ,
  i was reading about the tablespace data encryption in oracle applications 11i.so i have certain doubts.please clear my doubts.
  * Is it necessary that the whenever we startup the database we need to open the wallet in order to allow the users to access the table data or privileged users will be capable of accessing the table data
  * How the privileged users will be getting authenticated to access the table data
  Normally when we encrpt the create the wallet is it necessary that we should encrypt the table data
  What is the purpose of opening the wallet.If we open the wallet is it necessary that we have to decrpt the table data or opening the wallet i more enough to aoolow the users to access the table data
  please clear my confusions
  Regards
  Aram

  Hi Rajeesh,
  Thanks for the link to the tutorial. I went through the steps and got to the part where you actually create the encrypted tablespace. I skipped the column encryption since I will not be using that method. The tablespace creation failed via EM as it has before so I tried it at the command prompt as directed in the tutorial. It failed as well as it has before:
  SQL> create tablespace obe datafile '/u01/oradata/test/obe.dbf' size 100M
  2 encryption default storage (encrypt);
  create tablespace obe datafile '/u01/oradata/test/obe.dbf' size 100M
  ERROR at line 1:
  ORA-28374: typed master key not found in wallet
  I suspect re-keying will fail as well. Are there additional log files with more detail in them that might hint at the problem?
  Thanks.
  Dan.

• Data Encryption - Removable Storage - User-Defined Password

  Hello,
  we are testing Data encryption for USB Storage and want "Enable encryption via user-defined password" to the entire device.
  But this is not working.
  When i select "Apply password encryption to this folder only" and copy files to the specified folder, i got asked, which password i want to use and it works fine on the 2nd device without Endpoint Security Client to decrypt the files.
  But reselect "Apply password encryption to the entire device" i got no prompt to set a password, neither i can open the files on the 2nd device.
  I tried a lot. Formatting the USB Device (multiple times), clean the RSD Password, rebooting the devices, but nothing works.
  Can someone confirm this issue or better give a solution?! )
  BR

  sprause,
  It appears that in the past few days you have not received a response to your
  posting. That concerns us, and has triggered this automated reply.
  Has your problem been resolved? If not, you might try one of the following options:
  - Visit http://support.novell.com and search the knowledgebase and/or check all
  the other self support options and support programs available.
  - You could also try posting your message again. Make sure it is posted in the
  correct newsgroup. (http://forums.novell.com)
  Be sure to read the forum FAQ about what to expect in the way of responses:
  http://forums.novell.com/faq.php
  If this is a reply to a duplicate posting, please ignore and accept our apologies
  and rest assured we will issue a stern reprimand to our posting bot.
  Good luck!
  Your Novell Product Support Forums Team
  http://forums.novell.com/

• Does oracle 10.1 support transparent data encryption?

  hi,
  does oracle Release 10.1.0.3.0 support transparent data encryption?
  if not, what can i use instead?
  thanks

  According to http://download-uk.oracle.com/docs/cd/B14117_01/network.101/b10772/asoconfg.htm ,
  data encryption is supported for Oracle Net services in release 10.1.

• Wireless Data Encryption

  Hello all,
  I currently have WLC running 7.4 and would like to enable Encryption.
  I can see I can enable Encryption globally under all APs. 
  My question is:
  - What does this encrypt? AP to Controller?
  - What consequences does this have other than performance and reboot of APs
  - Will this make packet sniffing harder for users connected to the Wireless Network?
  Thanks for your help guys!

  Hi,
  - What does this encrypt? AP to Controller?
  When data encryption is enabled, traffic is encrypted at the access point before it is sent to the controller and at the controller before it is sent to the client.
  - What consequences does this have other than performance and reboot of APs
  As per cisco recommandation, Encryption limits throughput at both the controller and the access point.
  - Will this make packet sniffing harder for users connected to the Wireless Network?
  Yes
  Regards
  Dont forget to rate helpful posts