{"id":110,"date":"2020-02-25T19:10:30","date_gmt":"2020-02-25T19:10:30","guid":{"rendered":"http:\/\/ictbank.ir\/blog\/?p=110"},"modified":"2020-03-26T00:52:03","modified_gmt":"2020-03-26T00:52:03","slug":"connection-encryption-in-oracle-database","status":"publish","type":"post","link":"https:\/\/ictbank.ir\/blog\/connection-encryption-in-oracle-database\/","title":{"rendered":"Connection Encryption in Oracle Database"},"content":{"rendered":"\n<p>To encrypt connections between client and database server you have to set some parameters in sqlnet.ora file ($ORACLE_HOME\/network\/admin\/sqlnet.ora) of server and client (you have to install oracle client on the client):<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>server side:<\/li><\/ul>\n\n\n<div class=\"wp-block-syntaxhighlighter-code \"><pre class=\"brush: plain; title: ; notranslate\" title=\"\">\nSQLNET.ENCRYPTION_SERVER=REQUIRED\nSQLNET.ENCRYPTION_TYPES_SERVER=(AES256)\n<\/pre><\/div>\n\n\n<ul class=\"wp-block-list\"><li> client side:<\/li><\/ul>\n\n\n<div class=\"wp-block-syntaxhighlighter-code \"><pre class=\"brush: plain; title: ; notranslate\" title=\"\">\nSQLNET.ENCRYPTION_CLIENT=REQUIRED\nSQLNET.ENCRYPTION_TYPES_CLIENT=(AES256)\n<\/pre><\/div>\n\n\n<p>the ENCRYPTION_CLIENT parameter can have one of these values:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>ACCEPTED : The client or server will allow both encrypted and non-encrypted connections. This is the default if the parameter is not set.<\/li><li>REJECTED : The client or server will refuse encrypted traffic.<\/li><li>REQUESTED : The client or server will request encrypted traffic if it is possible, but will accept non-encrypted traffic if encryption is not possible.<\/li><li>REQUIRED : The client or server will only accept encrypted traffic.<\/li><\/ul>\n\n\n\n<p>the ENCRYPTION_TYPES_SERVER and ENCRYPTION_TYPES_CLIENT parameters can have these values:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>AES256: Advanced Encryption Standard (AES). AES was approved by the National Institute of Standards and Technology (NIST) to replace Data Encryption Standard (DES). AES256 enables you to encrypt a block size of 256 bits.<\/li><li>RC4_256: Rivest Cipher 4 (RC4), which is the most commonly used stream cipher that protects protocols such as Secure Sockets Layer (SSL). RC4_256 enables you to encrypt up to 256 bits of data.<\/li><li>AES192: Enables you to use AES to encrypt a block size of 192 bits.<\/li><li>3DES168: Triple Data Encryption Standard (TDES) with a three-key option. 3DES168 enables you to encrypt up to 168 bits of data.<\/li><li>AES128: Enables you to use AES to encrypt a block size of 128 bits.<\/li><li>RC4_128: Enables you to use RC4 to encrypt up to 128 bits of data.<\/li><li>3DES112: Enables you to use Triple DES with a two-key (112 bit) option.<\/li><li>DES: Data Encryption Standard (DES) 56-bit key. Note that National Institute of Standards and Technology (NIST) no longer recommends DES.<\/li><li>RC4_40: Enables you to use RC4 to encrypt up to 40 bits of data. (Not recommended.)<\/li><li>DES40: Enables you to use DES to encrypt up to 40 bits of data. (Not recommended.)<\/li><\/ul>\n\n\n\n<p><\/p>\n  ","protected":false},"excerpt":{"rendered":"<p>To encrypt connections between client and database server you have to set some parameters in sqlnet.ora file ($ORACLE_HOME\/network\/admin\/sqlnet.ora) of server and client (you have to install oracle client on the client): server side: client side: the ENCRYPTION_CLIENT parameter can have one of these values: ACCEPTED : The client or server will allow both encrypted and [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"templates\/template-full-width.php","format":"standard","meta":{"footnotes":""},"categories":[8,67,9],"tags":[64,62,2,63,65],"class_list":["post-110","post","type-post","status-publish","format-standard","hentry","category-database","category-db-security","category-oracle","tag-client","tag-encryption","tag-oracle","tag-server","tag-sqlnet-ora"],"_links":{"self":[{"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/posts\/110","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/comments?post=110"}],"version-history":[{"count":2,"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/posts\/110\/revisions"}],"predecessor-version":[{"id":135,"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/posts\/110\/revisions\/135"}],"wp:attachment":[{"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/media?parent=110"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/categories?post=110"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ictbank.ir\/blog\/wp-json\/wp\/v2\/tags?post=110"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}