Bookshelf Home | Contents | Index | PDF     

Siebel Security Guide > Communications and Data Encryption > Process of Upgrading Data to a Higher Encryption Level >

Running the Encryption Upgrade Utility

This topic describes how to run the Encryption Upgrade utility. You must run the utility if you want to perform either of the following tasks:

  • Encrypt data that is not encrypted
  • Increase the encryption level of data that is already encrypted

This task is a step in Process of Upgrading Data to a Higher Encryption Level.

NOTE:  The Encryption Upgrade utility writes output to its own log file which is located in the log subdirectory of your Siebel Server directory. The default filename for the log file is encryptupg.log. You can specify another filename for the log file as described in the following procedure.

To run the encryption upgrade utility

  1. Verify that the input file encrypt_colums.inp includes all the columns that you want to upgrade. If necessary, review Modifying the Input File.
  2. Run encryptupg.exe by navigating to SIEBEL_ROOT\siebsrvr\bin and entering the following command:

    encryptupg.exe /f FromEncrytionStrength /t ToEncryptionStrength /j InputFileName /l Language /u UserName /p Password /c ConfigurationFile /L LogFile

    where:

    • FromEncrytionStrength is the encryption strength that you want to upgrade from. The following table describes valid parameters to enter in this command.
      Parameter
      Description

      NONE

      Unencrypted data.

      STAND

      Data encrypted by the Siebel Standard Encryptor. This type of encryption is no longer supported.

      RC2

      Data encrypted using the RC2 encryption method.

      CAUTION:  When you run the Encryption Upgrade utility on unencrypted data and specify the NONE parameter, the utility will encrypt the data. Be careful that you do not run the utility in this mode on the same data twice. If you do, then you will encrypt data that is already encrypted, leading to a permanent loss of data.

    • ToEncryptionStrength is the encryption strength that you want to upgrade to. The following table describes valid parameters to enter in this command.
      Parameter
      Description

      RC2

      Data encrypted using the RC2 encryption method.

      AES

      Data encrypted using the AES encryption method.
    • InputFileName is the filename of your input file (the default is encrypt_columns.inp).
    • Language is the language code, for example, to specify U.S. English, enter ENU.
    • UserName is the user name for the database.
    • Password is the password for the database.
    • ConfigurationFile is the application configuration file where you specify the data source for the Encryption Upgrade utility to retrieve data from.
    • LogFile is the log file that the Encryption Upgrade utility writes to; the default file is encryptupg.log.

      For example, the following command allows a Siebel administrator to upgrade data encrypted using RC2 encryption to AES encryption:

    encryptupg /f RC2 /t AES /j d:\sba8x\siebsrvr\bin\encryptupg.inp /l ENU /u sadmin p dbpw /c d:\sba8x\siebsrvr\bin\enu\siebel.cfg

  3. After the upgrade is complete, make sure that the encrypted database columns specify the value for the encryption method used in the Computation Expression parameter. For more information, see Configuring Encryption and Search on Encrypted Data.
  4. Compile a new Siebel repository file (.SRF).

    For information about how to compile a.SRF file, see Using Siebel Tools.

    
Siebel Security Guide Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Legal Notices.