Use the wallet to encrypt tablespace,table.
来源:互联网 发布:太原资海网络 编辑:程序博客网 时间:2024/04/29 15:49
Use the wallet to encrypt tablespace.
We can use the default directory to storethe wallet or we use the sqlnet.ora file to specify the path to store it.
Add the following content into sqlnet.orafile then do not forget the restart the listener to take effect.
ENCRYPTION_WALLET_LOCATION=(SOURCE=(METHOD=FILE)(METHOD_DATA=(DIRECTORY=D:oradatawallet)))
We can use GUI to invoke the Oracle WalletManager to create the wallet.
We also can use the command : C:/Documentsand Settings/Henrybaiwentao>mkstore -wrl c:/wallet -create
Oracle Secret Store Tool: 版本 11.2.0.1.0 - Production
版权所有 (c) 2004,2009, Oracle 和/或其子公司。保留所有权利。
Or the SQL command as below:
SQL> alter system set encryption keyidentified by "!Q@W#E$R";
系统已更改。
SQL> select * from v$encryption_wallet;
WRL_TYPE
--------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
STATUS
------------------
file
E:/APP/HENRYBAIWENTAO/ADMIN/ORCL/WALLET
OPEN
Then we can create a tablespace withencryption.
SQL> create tablespace secure1 datafile'E:/APP/HENRYBAIWENTAO/ADMIN/ORCL/secure1_01.dbf'
2 size 1m
3 encryption using 'AES128'
4 default storage (encrypt)
5 /
表空间已创建。
SQL>
SQL> create table secure_trans
2 tablespace secure1
3 as select * from dba_objectswhere rownum<201
4 /
表已创建。
SQL> select * fromv$encrypted_tablespaces;
TS# ENCRYPT ENC
---------- ------- ---
7 AES128 YES
Encrypt the table:
SQL> create table accounts
2 (
3 acc_no number not null,
4 first_name varchar2(30) not null,
5 last_name varchar2(30) not null,
6 SSN varchar2(9) ENCRYPT USING 'AES128', --- tde on column.
7 acc_type varchar2(1) not null,
8 folio_id number ENCRYPT USING 'AES128',
9 sub_acc_type varchar2(30),
10 acc_open_dt date not null,
11 acc_mod_dt date,
12 acc_mgr_id number
13 );
SSN varchar2(9) ENCRYPT USING 'AES128', --- tde on column.
*
第 6 行出现错误:
ORA-28336: 不能加密 SYS 所拥有的对象
SQL> create table scott.accounts(
2 id number,
3 name varchar2(30) ENCRYPT USING 'AES128');
表已创建。
SQL> insert into scott.accounts values (1,'HENRY');
已创建 1 行。
SQL> insert into scott.accounts values(2,'BAI');
已创建 1 行。
SQL> select * from scott.accounts;
ID NAME
---------- ------------------------------
1 HENRY
2 BAI
SQL> alter system set wallet close;
alter system set wallet close
*
第 1 行出现错误:
ORA-28390: 自动登录 wallet 未打开
SQL> select * from v$encryption_wallet;
WRL_TYPE
--------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
STATUS
------------------
file
E:/APP/HENRYBAIWENTAO/ADMIN/ORCL/WALLET
OPEN
SQL> alter system set encryption wallet close identified by "welcome1";
alter system set encryption wallet close identified by "welcome1"
*
第 1 行出现错误:
ORA-28391: 无法关闭 wallet 或 HSM, 口令不匹配
SQL> alter system set encryption wallet close identified by "!Q@W#E$R";
系统已更改。
SQL> select * from v$encryption_wallet;
WRL_TYPE
--------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
STATUS
------------------
file
E:/APP/HENRYBAIWENTAO/ADMIN/ORCL/WALLET
CLOSED
SQL> select * from scott.accounts;
select * from scott.accounts
*
第 1 行出现错误:
ORA-28365: Wallet 未打开
SQL>
- Use the wallet to encrypt tablespace,table.
- migrate table to another tablespace
- Use Rijndael to Encrypt and Decrypt
- 144.You execute the following command to change the status of the SALES tablespace: SQL> ALTER TABLE
- Oracle unable to extend table in tablespace
- How to use partition table
- How To Reclaim Wasted Space on The Segment (Table, Index and LOB) and Tablespace Levels (文档 ID 16827
- How To Reclaim Wasted Space on The Segment (Table, Index and LOB) and Tablespace Levels (文档 ID 16827
- Migrate the index segment to another tablespace
- use asp to know the table's struction of sql servler
- 如何使用表维护工具。how to use the table extent maintenance tool
- How To: Use DPAPI to Encrypt and Decrypt Data (C#/VB.NET)
- Tablespace for table '`pomelo`.`bag`' exists. Please DISCARD the tablespace before IMPORT.
- From the Wallet to the Web, Java Cards Get Pervasive @ JDJ
- Install and configure Gnupg & Use Gnupg to encrypt file in PHP
- How to use the CAknWaitDialog
- how to use the CAknwaitDialog
- How to use the CAknWaitDialog
- 百万级访问网站前期的技术准备(中)
- 实践中发现的问题
- 百万级访问网站前期的技术准备(下)
- jQuery 插件 jQuery UI的使用
- 浮点数越界或者无效-1.#IND000
- Use the wallet to encrypt tablespace,table.
- 工作6年,嵌入式开发,整理资料
- Does the parameter type of the setter match the return type of the getter?
- 2011年.NET面试题总结
- C#小知识点
- android opengl es 源码
- random class 配置sprin定时任务
- php的JSON 总结 json_decode() 解析错误 及 PEAR JSON.PHP使用
- apache