Skip Headers
Oracle® Database Advanced Security Administrator's Guide
11g Release 2 (11.2)

E40393-08
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Previous
PDF · Mobi · ePub

Index

A  B  C  D  E  F  G  H  I  J  K  L  M  N  O  P  R  S  T  U  V  W  X 

A

accounting, RADIUS, 11.3.5
activating checksumming and encryption, 9.4.1
ad hoc tools
Oracle Data Redaction, 3.4.2
adapters, 1.3
administrative access to policies, restricting, 7.2
aggregate functions
affect on Data Redaction policy optimization, 6.3
ALTER SYSTEM SET command
closing encryption wallets, 8.2.7.1
opening encryption wallets, 8.2.3, 8.2.7.1, 8.4.1.3
opening HSM wallets, 8.2.6.6
setting master encryption key, 8.2.2.1, 8.2.6.4, 8.4.1.2
anonymous, 13.6.2.3
APEX_UTIL.GET_NUMERIC_SESSION_STATE function
Oracle Data Redaction policies (NV public function), 5.5.4
APEX_UTIL.GET_SESSION_STATE function
Oracle Data Redaction policies (V public function), 5.5.4
applications
database applications and Oracle Data Redaction, 3.4.1
asynchronous authentication mode in RADIUS, 11.2.2
authentication, 1.3
configuring multiple methods, 15.3
methods, 1.2.2.2
modes in RADIUS, 11.2
auto login wallets
and Transparent Data Encryption (TDE), 8.2.1.2, 8.2.2.2

B

benefits of Oracle Advanced Security, 1.2
BFILE, 8.2.4.7
browser certificates, using with Oracle Wallet Manager, 14.5.1.3.1

C

certificate, 13.2.3.2
browser, using with Oracle Wallet Manager, 14.5.1.3.1
certificate authority, 13.2.3.1
certificate revocation lists, 13.2.3.3
manipulating with orapki tool, 13.8.5.1
uploading to LDAP directory, 13.8.5.1
where to store them, 13.8.3
certificate revocation status checking
disabling on server, 13.8.4.2, 13.8.4.3
certificate validation error message
CRL could not be found, 13.8.6.1
CRL date verification failed with RSA status, 13.8.6.1
CRL signature verification failed with RSA status, 13.8.6.1
Fetch CRL from CRL DP
No CRLs found, 13.8.6.1
OID hostname or port number not set, 13.8.6.1
challenge-response authentication in RADIUS, 11.2.2
change data capture, synchronous, 8.2.4.7
cipher block chaining mode, 1.2.1.1.1
cipher suites
procedure for specifying for server, 13.6.2.3
Secure Sockets Layer (SSL), B.3.2.1
client authentication in SSL, 13.6.2.5
compression of Transparent Data Encryption data, 8.3.8
configuration files
Kerberos, B.1
configuring
Entrust-enabled Secure Sockets Layer (SSL)
on the client, F.4.3
Kerberos authentication service parameters, 12.1.7.1
Oracle server with Kerberos, 12.1.2
RADIUS authentication, 11.3.2
SSL, 13.6
on the client, 13.6.3
on the server, 13.6.2
thin JDBC support, 10
connecting
with username and password, 15.1
CRL, 13.2.3.3
CRLAdmins directory administrative group, E.6.7.1
CRLs
disabling on server, 13.8.4.2, 13.8.4.3
where to store them, 13.8.3
cryptographic hardware devices, 13.2.3.5

D

data deduplication of Transparent Data Encryption data, 8.3.8
Data Encryption Standard (DES)
Triple-DES encryption algorithm, 1.2.1.1.1, 9.1.2
data integrity, 1.2.1.2, 1.2.1.2
data redaction
See Oracle Data Redaction
database links
RADIUS not supported, 11.1
database roles
Data Redaction policies, 5.5.3
DDL statements
Oracle Data Redaction policies, 6.1
Diffie-Hellman, 13.6.2.3
Diffie-Hellman key negotiation algorithm, 9.3
DML statements
Oracle Data Redaction policies, 6.1

E

encryption and checksumming
activating, 9.4.1
negotiating, 9.4.2
parameter settings, 9.4.3
ENCRYPTION_WALLET_LOCATION parameter, 8.2.1.1, 8.2.5.1, 8.2.6.1, 8.3.1.1, 8.4.1.1
Entrust Authority
creating database users, F.4.6
Entrust Authority for Oracle, F.2.1
Entrust Authority Software
authentication, F.3, F.4
certificate revocation, F.1.3
components, F.2, F.2.1.1
configuring
client, F.4.4
server, F.4.5
Entelligence, F.2.1.3
etbinder command, F.4.5.1
issues and restrictions, F.5
key management, F.1.2
profiles, F.4.1
administrator-created, F.4.1
user-created, F.4.1.2
Self-Administration Server, F.2.1.2
versions supported, F.2
Entrust, Inc., F
Entrust-enabled SSL
troubleshooting, F.6
Entrust/PKI Software, 1.2.2.2.4
error messages
ORA-12650, 9.4.1, 9.4.2.1, 9.4.2.2, A.2.6, A.2.7, A.2.8, A.2.9
ORA-28890, F.6
etbinder command, F.4.5.1
EXEMPT REDACTION POLICY privilege
using with Database Vault, 7.2
external large objects (BFILE), 8.2.4.7

F

Federal Information Processing Standard (FIPS), 1.2.1.3, D.3.1
sqlnet.ora parameters, D.3.2
FIPS 140-2 Level 2 certification, D.2.1
FIPS Parameter
Configuring, D.2.2
FIPS. See Federal Information Processing Standard (FIPS)

G

grid computing
benefits, 1.1.1
defined, 1.1.1
guidelines
ad hoc query attacks and Data Redaction, 7.1
application context value handling by Data Redaction policies, 7.1
day-to-day operations and Data Redaction, 7.1
DDL statements and Data Redaction policies, 7.1
exhaustive SQL queries and inference and Data Redaction, 7.1
materialized views and Data Redaction, 7.5
recycle bin and Data Redaction, 7.6
SYS_CONTEXT values and Data Redaction, 7.4

H

handshake
SSL, 13.1.3
HSMs (hardware security modules)
PKCS#11 library, 8.2.6.2
sqlnet.ora file, 8.2.6.1
user_Id:password string, 8.2.6.4

I

import/export utilities, original, 8.2.4.7, 8.2.4.7
index range scans, 8.1.2.2
initialization parameter file
parameters for clients and servers using Kerberos, B.1
parameters for clients and servers using RADIUS, B.2
parameters for clients and servers using SSL, B.3
inline views
Data Redaction policies order of redaction, 6.2
Data Redaction redaction, 6.2
Internet Explorer certificates
using with Oracle Wallet Manager, 14.5.1.3
intruders
ad hoc query attacks, 7.1

J

Java Byte Code Obfuscation, 10.1.4
Java Database connectivity (JDBC)
implementation of Oracle Advanced Security, 10.1
Java Database Connectivity (JDBC)
configuration parameters, 10.2
Oracle extensions, 10.1.1
thin driver features, 10.1.2
JDBC. See Java Database Connectivity

K

Kerberos, 1.2.2.2.1, 1.2.2.2.1
authentication adapter utilities, 12.2
configuring authentication, 12.1, 12.1.7.1
kinstance, 12.1.2
kservice, 12.1.2
realm, 12.1.2
sqlnet.ora file sample, A.1
system requirements, 1.4, 1.4
kinstance (Kerberos), 12.1.2
kservice (Kerberos), 12.1.2

L

LAN environments
vulnerabilities of, 1.1.3.1
large objects
BFILE, 8.2.4.7
BLOB, 8.2.4.7
CLOB, 8.2.4.7
external, 8.2.4.7
LOB, 8.2.4.7
ldap.ora
which directory SSL port to use for no authentication, 13.8.5.4
listener
endpoint
SSL configuration, 13.6.2.7

M

managing roles with RADIUS server, 11.3.9
masking
See Oracle Data Redaction
materialized views
Data Redaction guideline, 7.5
Microsoft Internet Explorer certificates
using with Oracle Wallet Manager, 14.5.1.3

N

nCipher hardware security module
using Oracle Net tracing to troubleshoot, 13.9.5.1
nested functions
Data Redaction policies order of redaction, 6.2
Netscape certificates
using with Oracle Wallet Manager, 14.5.1.3
Netscape Communications Corporation, 13.1
NOMAC parameter (TDE), 8.2.4.1.3
NV public function (APEX_UTIL.GET_NUMERIC_SESSION_STATE function), Data Redaction policies, 5.5.4

O

obfuscation, 10.1.4
okdstry
Kerberos adapter utility, 12.2
okinit
Kerberos adapter utility, 12.2
oklist
Kerberos adapter utility, 12.2
ORA-00979
not a GROUP BY expression error, 7.1
ORA-12650 error message, A.2.7
ORA-28081
Insufficient privileges - the command references a redacted object error, 6.1
ORA-28330, 8.5
ORA-28331, 8.5
ORA-28332, 8.5
ORA-28333, 8.5
ORA-28334, 8.5
ORA-28335, 8.5
ORA-28336, 8.5
ORA-28337, 8.5
ORA-28338, 8.5
ORA-28339, 8.5
ORA-28340, 8.5
ORA-28341, 8.5
ORA-28342, 8.5
ORA-28343, 8.5
ORA-28344, 8.5
ORA-28345, 8.5
ORA-28346, 8.5
ORA-28347, 8.5
ORA-28348, 8.5
ORA-28349, 8.5
ORA-28350, 8.5
ORA-28351, 8.5
ORA-28353, 8.5
ORA-28354, 8.5
ORA-28356, 8.5
ORA-28357, 8.5
ORA-28358, 8.5
ORA-28359, 8.5
ORA-28361, 8.5
ORA-28362, 8.5
ORA-28363, 8.5
ORA-28364, 8.5
ORA-28365, 8.5
ORA-28366, 8.5
ORA-28367, 8.5
ORA-28368, 8.5
ORA-28369, 8.5
ORA-28370, 8.5
ORA-28371, 8.5
ORA-28372, 8.5
ORA-28373, 8.5
ORA-28374, 8.5
ORA-28375, 8.5
ORA-28376, 8.5
ORA-28377, 8.5
ORA-28378, 8.5
ORA-28885 error, 14.1.6
ORA-40300 error message, 13.9.5.2
ORA-40301 error message, 13.9.5.2
ORA-40302 error message, 13.9.5.2
Oracle Advanced Security
checksum sample for sqlnet.ora file, A.1
configuration parameters, 10.2
disabling authentication, 15.2
encryption sample for sqlnet.ora file, A.1
Java implementation, 10.1, 10.1.3
SSL features, 13.1.2
Oracle Application Express
filtering using by session state in Data Redaction policies, 5.5.4
Oracle Applications wallet location, 14.4.11
Oracle Data Pump
exported data from Data Redaction policies, 6.8
Oracle Data Redaction
about, 3.1
ad hoc tools, 3.4.2
aggregate functions, 6.3
benefits, 3.3
database applications, 3.4.1
DBMS_REDACT.ADD_POLICY procedure
using, 5.3
DBMS_REDACT.ALTER_POLICY procedure
about, 5.12.1
example, 5.12.4
parameters required for various actions, 5.12.3
syntax, 5.12.2
DBMS_REDACT.DISABLE_POLICY
about, 5.14.1
example, 5.14.1
syntax, 5.14.1
DBMS_REDACT.DROP_POLICY
about, 5.15
examples, 5.15
syntax, 5.15
DBMS_REDACT.ENABLE_POLICY
about, 5.14.2
example, 5.14.2
syntax, 5.14.2
DBMS_REDACT.UPDATE_FULL_REDACTION_VALUES procedure
about, 5.6.2.1
editions, 6.5
exporting data using Data Pump Export, 6.8
full data redaction
about, 4.1
creating policy for, 5.6.1.1
examples, 5.6.1.3
modifying default value, 5.6.2.1
syntax, 5.6.1.2
full Data Redaction
modifying LOB data type column default, 5.6.2.3
modifying non-LOB data type column default, 5.6.2.2
how differs from Oracle Virtual Private Database masking, 6.6
inline views order of redaction, 6.2
nested functions order of redaction, 6.2
no data redaction
about, 4.6, 5.10.1
creating policies for, 5.10.1
example, 5.10.3
syntax, 5.10.2
Oracle Enterprise Manager Data Masking and Subsetting Pack, 6.9
partial data redaction
about, 4.2
character types, policies for, 5.7.4.1
data-time data types, 5.7.6.1
example using character data type, 5.7.4.2
example using data-time data type, 5.7.6.2
example using fixed character shortcut, 5.7.3.2
example using number data type, 5.7.5.2
number data types, 5.7.5.1
shortcuts, fixed character, 5.7.3.1
syntax, 5.7.2
privileges for creating policies, 5.2
random data redaction
about, 5.9.1
creating policies for, 5.9.1
example, 5.9.3
syntax, 5.9.2
randomized data redaction
about, 4.4
regular expression data redaction
creating policies for, 5.8.1
custom, creating policies for, 5.8.4
example, 5.8.3.2
example of custom, 5.8.4.2
settings for, 5.8.4.1
shortcuts, 5.8.3.1
shortcuts, creating policies for, 5.8.3
syntax, 5.8.2
regular expression redaction
about, 4.3
SYS schema objects, 7.3
SYSTEM schema objects, 7.3
use cases, 3.4
when to use, 3.2
WHERE clause redaction, 6.2
Oracle Data Redaction partial redaction
creating policies for, 5.7.1
Oracle Data Redaction policies, 5.5.2
about, 5.1
altering, 5.12.1
building reports, 5.17
creating
examples, 5.6.1.3
general syntax, 5.4
procedure, 5.3
disabling, 5.14.1
dropping, 5.15
effect on view chain, 5.16
enabling, 5.14.2
exempting users from, 5.11
expressions
by Application Express session state, 5.5.4
by database role, 5.5.3
by user environment, 5.5.2
filtering users
about, 5.5.1
no filtering, 5.5.5
finding information about, 5.18
redacting multiple columns in one policy, 5.13
Oracle Database Vault
using with Data Redaction, 7.2
Oracle Enterprise Manager Data Masking and Subsetting Pack
Oracle Data Redaction impact, 6.9
Oracle Internet Directory
Diffie-Hellman SSL port, 13.8.5.4
Oracle parameters
authentication, 15.4
Oracle Password Protocol, 10.1.3
Oracle Virtual Private Database (VPD)
Data Redaction, 6.6
Oracle Wallet Manager
importing PKCS #7 certificate chains, 14.5.1.2
orapki
adding a root certificate to a wallet with, E.3.2
adding a trusted certificate to a wallet with, E.3.2
adding user certificates to a wallet with, E.3.2
changing the wallet password with, E.3.1.4
creating a local auto login wallet with, E.3.1.2
creating a signed certificate for testing, E.2
creating a wallet with, E.3.1.1
creating an auto login wallet with, E.3.1.2, E.3.1.2
exporting a certificate from a wallet with, E.3.3
exporting a certificate request from a wallet with, E.3.3
viewing a test certificate with, E.2
viewing a wallet with, E.3.1.3
orapki tool, 13.8.5.1
original import/export utilities, 8.2.4.7, 8.2.4.7
OS_AUTHENT_PREFIX parameter, 15.4.2
OSS.SOURCE.MY_WALLET parameter, 13.6.2.2, 13.6.3.3

P

parameters
authentication
Kerberos, B.1
RADIUS, B.2
Secure Sockets Layer (SSL), B.3
configuration for JDBC, 10.2
encryption and checksumming, 9.4.3
PKCS #11 devices, 13.2.3.5
PKCS #11 error messages
ORA-40300, 13.9.5.2
ORA-40301, 13.9.5.2
ORA-40302, 13.9.5.2
PKCS #7 certificate chain, 14.5.1.2
difference from X.509 certificate, 14.5.1.2
public key infrastructure (PKI), 1.2.2.2.3, 1.2.2.2.4
Public Key Infrastructure (PKI)
certificate, 13.2.3.2
certificate authority, 13.2.3.1
certificate revocation lists, 13.2.3.3
PKCS #11 hardware devices, 13.2.3.5
wallet, 13.2.3.4

R

RAC (Real Application Clusters)
and TDE (transparent data encryption), 8.2.7
RADIUS, 1.2.2.2.2, 1.2.2.2.2
accounting, 11.3.5
asynchronous authentication mode, 11.2.2
authentication modes, 11.2
authentication parameters, B.2
challenge-response
authentication, 11.2.2
user interface, C.1, C.2
configuring, 11.3.2
database links not supported, 11.1
location of secret key, 11.3.2.3
smartcards and, 1.2.2.2.2, 11.2.2, 11.3.2.3, C.1
sqlnet.ora file sample, A.1
synchronous authentication mode, 11.2.1
system requirements, 1.4
realm (Kerberos), 12.1.2
recycle bin
Data Redaction policies and, 7.6
reports
based Data Redaction policies, 5.17
restrictions, 1.5
revocation, F.1.3
roles
managing with RADIUS server, 11.3.9

S

salt (TDE)
adding, 8.2.4.4
removing, 8.2.4.4
See also TDE (transparent data encryption)
secret key
location in RADIUS, 11.3.2.3
Secure Sockets Layer (SSL), 1.2.2.2.3
architecture, 13.3.1
authentication parameters, B.3
authentication process in an Oracle environment, 13.1.3
cipher suites, B.3.2.1
client authentication parameter, B.3.4
client configuration, 13.6.3
combining with other authentication methods, 13.3
configuring, 13.6
configuring Entrust-enabled SSL on the client, F.4.3
enabling, 13.6
enabling Entrust-enabled SSL, F.4
filtering certificates, 13.6.3.7
handshake, 13.1.3
industry standard protocol, 13.1
multiple certificates, filtering, 13.6.3.7
requiring client authentication, 13.6.2.5
server configuration, 13.6.2
sqlnet.ora file sample, A.1
system requirements, 1.4
version parameter, B.3.3
wallet location, parameter, B.3.5
SecurID, 11.2.1
token cards, 11.2.1
security
Internet, 1.1.2
Intranet, 1.1.2
threats, 1.1.3
data tampering, 1.1.3.2
dictionary attacks, 1.1.3.4
eavesdropping, 1.1.3.1
falsifying identities, 1.1.3.3
password-related, 1.1.3.4
Security Sockets Layer (SSL)
use of term includes TLS, 13.1.1
single sign-on (SSO), 1.2.2.2.4, F.1.1
smartcards, 1.2.2.2.2
and RADIUS, 1.2.2.2.2, 11.2.2, 11.3.2.3, C.1
SQLNET.AUTHENTICATION_KERBEROS5_SERVICE parameter, 12.1.7.1
SQLNET.AUTHENTICATION_SERVICES parameter, 11.3.2.1, 12.1.7.1, 13.6.2.6, 13.6.2.6, 13.6.3.6, 13.6.3.6, 15.2, 15.3
SQLNET.CRYPTO_CHECKSUM_CLIENT parameter, 9.4.3.2
SQLNET.CRYPTO_CHECKSUM_SERVER parameter, 9.4.3.2
SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT parameter, 9.4.3.2, A.2.9
SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER parameter, 9.4.3.2, A.2.8
SQLNET.ENCRYPTION_CLIENT parameter, 9.4.3.1, A.2.2, A.2.3
SQLNET.ENCRYPTION_SERVER parameter, 9.4.3.1, A.2.1
SQLNET.ENCRYPTION_TYPES_CLIENT parameter, 9.4.3.1, A.2.7
SQLNET.ENCRYPTION_TYPES_SERVER parameter, 9.4.3.1, A.2.6
SQLNET.FIPS_140 parameter, D.3.2.5
SQLNET.KERBEROS5_CC_NAME parameter, 12.1.7.3
SQLNET.KERBEROS5_CLOCKSKEW parameter, 12.1.7.3
SQLNET.KERBEROS5_CONF parameter, 12.1.7.3
SQLNET.KERBEROS5_CONF_MIT parameter, 12.1.7.3
SQLNET.KERBEROS5_KEYTAB parameter, 12.1.7.3
SQLNET.KERBEROS5_REALMS parameter, 12.1.7.3
sqlnet.ora file
Common sample, A.1
FIPS 140-1 parameters, D.3.2
Kerberos sample, A.1
Oracle Advanced Security checksum sample, A.1
Oracle Advanced Security encryption sample, A.1
OSS.SOURCE.MY_WALLET parameter, 13.6.2.2, 13.6.3.3
parameters for clients and servers using Kerberos, B.1
parameters for clients and servers using RADIUS, B.2
parameters for clients and servers using SSL, B.3
RADIUS sample, A.1
sample, A.1
SQLNET.AUTHENTICATION_KERBEROS5_SERVICE parameter, 12.1.7.1
SQLNET.AUTHENTICATION_SERVICES parameter, 12.1.7.1, 13.6.2.6, 13.6.2.6, 13.6.3.6, 13.6.3.6, 15.2, 15.3
SQLNET.CRYPTO_CHECKSUM_CLIENT parameter, 9.4.3.2
SQLNET.CRYPTO_CHECKSUM_SERVER parameter, 9.4.3.2
SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT parameter, 9.4.3.2, A.2.9
SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER parameter, 9.4.3.2, A.2.8
SQLNET.ENCRYPTION_CLIENT parameter, A.2.2, A.2.3
SQLNET.ENCRYPTION_SERVER parameter, 9.4.3.1, A.2.1
SQLNET.ENCRYPTION_TYPES_CLIENT parameter, 9.4.3.1, A.2.7
SQLNET.ENCRYPTION_TYPES_SERVER parameter, 9.4.3.1, A.2.6
SQLNET.FIPS_140 parameter, D.3.2.5
SQLNET.KERBEROS5_CC_NAME parameter, 12.1.7.3
SQLNET.KERBEROS5_CLOCKSKEW parameter, 12.1.7.3
SQLNET.KERBEROS5_CONF parameter, 12.1.7.3
SQLNET.KERBEROS5_CONF_MIT parameter, 12.1.7.3
SQLNET.KERBEROS5_KEYTAB parameter, 12.1.7.3
SQLNET.KERBEROS5_REALMS parameter, 12.1.7.3
SQLNET.SSL_EXTENDED_KEY_USAGE, 13.6.3.7
SSL sample, A.1
SSL_CLIENT_AUTHENTICATION parameter, 13.6.2.5
SSL_CLIENT_AUTHETNICATION parameter, 13.6.3.3
SSL_VERSION parameter, 13.6.2.4, 13.6.3.5
Trace File Set Up sample, A.1
sqlnet.ora file, TDE (transparent data encryption), 8.2.2.1, 8.2.5.1, 8.2.6.1, 8.4.1.1, 8.5
SQLNET.RADIUS_ALTERNATE parameter, 11.3.2.3
SQLNET.RADIUS_ALTERNATE_PORT parameter, 11.3.2.3
SQLNET.RADIUS_ALTERNATE_RETRIES parameter, 11.3.2.3
SQLNET.RADIUS_ALTERNATE_TIMEOUT parameter, 11.3.2.3
SQLNET.RADIUS_SEND_ACCOUNTING parameter, 11.3.5.1
SQLNET.SSL_EXTENDED_KEY_USAGE, A.2.3
SQLNET.SSL_EXTENDED_KEY_USAGE parameter, 13.6.3.7
SSL. See Secure Sockets Layer (SSL)
SSL wallet location, 14.4.2.1, 14.4.11
SSL_CLIENT_AUTHENTICATION parameter, 13.6.2.5, 13.6.3.3
SSL_VERSION parameter, 13.6.2.4, 13.6.3.5
SSO. See single sign-on (SSO)
SSO wallets, 14.4.14
synchronous authentication mode, RADIUS, 11.2.1
synchronous change data capture, 8.2.4.7
SYS user
Data Redaction policies, 7.3
SYS_CONTEXT function
Data Redaction policies, 7.4
SYS_SESSION_ROLES namespace used in Data Redaction, 5.5.3
SYS_SESSION_ROLES SYS_CONTEXT namespace
Data Redaction, 5.5.3
system requirements, 1.4
Kerberos, 1.4
RADIUS, 1.4
SSL, 1.4
SYSTEM user
Data Redaction policies, 7.3

T

tablespace encryption
creating encrypted tablespaces, 8.2.5.3
editing the sqlnet.ora file, 8.2.5.1
opening wallet, 8.2.5.2
setting tablespace key, 8.2.5.1
tablespace master encryption key, 8.2.5.1, 8.2.5.2
TDE (transparent data encryption)
and Oracle RAC (Real Application Clusters), 8.2.7
concepts, 8.1
figure, 8.1.2.2
HSMs (hardware security modules)
PKCS#11 library, 8.2.6.2
user_Id:password string, 8.2.6.4
managing, 8.3
backing up and recovering keys, 8.3.2
managing wallets, 8.3.1
reference, 8.6
restrictions, 8.2.4.7
tablespace encryption
creating encrypted tablespaces, 8.2.5.3
opening wallet, 8.2.5.2
setting tablespace key, 8.2.5.1
troubleshooting, 8.5
using, 8.2
creating tables, 8.2.4.1
editing the sqlnet.ora file, 8.4.1.1
encrypting columns, 8.2.4.2
opening wallet, 8.2.3
setting master encryption key, 8.2.2
thin JDBC support, 10
TLS See Secure Sockets Layer (SSL)
token cards, 1.2.2.2.2
trace file
set up sample for sqlnet.ora file, A.1
transparent data encryption
See TDE
Transparent Data Encryption (TDE)
compression of encrypted data, 8.3.8
data deduplication of encrypted data, 8.3.8
multi-database environments, 8.3.6, 8.3.10
transportable tablespaces, 8.2.4.7
Triple-DES encryption algorithm, 1.2.1.1.1
troubleshooting, 12.4
Entrust-enabled SSL, F.6

U

utilities, import/export, 8.2.4.7

V

V public function (APEX_UTIL.GET_SESSION_STATE function), Data Redaction policies, 5.5.4
views
Data Redaction, 5.18

W

wallet, 13.2.3.4
wallets
auto login, 8.2.1.2, 8.2.2.2, 14.4.14
changing a password, 14.4.13
closing, 8.2.6.6, 8.2.7.1, 14.4.4
creating, 14.4.2
deleting, 14.4.12
managing, 14.4
managing certificates, 14.5
managing trusted certificates, 14.5.2
opening, 8.2.3, 8.2.6.6, 8.2.7.1, 8.4.1.3, 8.6.2, 14.4.3
Oracle Applications wallet location, 14.4.11
saving, 14.4.9
setting location, 13.6.2.2
SSL wallet location, 14.4.2.1, 14.4.11
SSO wallets, 14.4.14

X

X.509 certificate
difference from PKCS #7 certificate chain, 14.5.1.2
X.509 PKI certificate standard, F.1.1