Configure Encryption

Encryption is the process of disguising a message rendering it unreadable to anyone but the intended recipient.

To configure encryption parameters:

  1. In the navigator pane, expand Oracle Net Configuration > Local > Profile.

  2. From the list in the right pane, select Oracle Advanced Security.

  3. Select the Encryption tab.

  4. Select either Client or Server from the Encryption list.

  5. Select a value from the Encryption Type list to specify the client or server behavior when negotiating encryption and integrity. The four possible values are as follows:

     

    accepted

    Service will be active if the other side of the connection specifies either "required" or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.

    rejected

    Service must not be active, and the connection will fail if the other side specifies "required".

    requested

    Service will be active if the other side of the connection specifies either "accepted", "required", or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.

    required

    Service must be active, and the connection will fail if the other side specifies "rejected", or if there is no compatible algorithm on the other side.

  6. Enter an encryption seed in the Encryption Seed field: a random string of between 10 and 70 characters. This encryption seed is used with the encryption algorithm you select in the next step.

  7. From the Available Methods list, select an encryption algorithm, and then choose the right-arrow (<) button to move it to the Selected Methods list. The order of the methods in the Selected Methods list determines the preferred order for negotiation. The following algorithms are supported by Oracle Advanced Security:

     

    RC4_256

    256 bit key size

    3DES168

    Triple DES with a three-key (168 bit) option

    RC4_128

    128 bit key size

    3DES112

    Triple DES with a two-key (112 bit) option

    RC4_56

    56 bit key size

    DES

    Standard 56 bit key size

    RC4_40

    40 bit key size

    DES40

    40 bit key size

  8. Choose File > Save Network Configuration.

     

    n8ahelp00000018.gif

    Note: All Oracle Advanced Security encryption algorithms and key lengths are available for U.S. domestic use only.