Manage Encryption Keys on Autonomous AI Database
Describes how to use customer-managed encryption keys with Autonomous AI Database, and if you are using customer-managed encryption keys, shows how to rotate the keys, switch to Oracle-managed encryption keys, or view the encryption key history.
-
About Master Encryption Key Management on Autonomous AI Database
Autonomous AI Database provides two options for Transparent Data Encryption (TDE) to encrypt your database: Oracle-managed encryption keys and Customer-managed encryption keys.
-
Manage Master Encryption Keys in OCI Vault
If your organization's security policies require customer-managed encryption keys, you can configure Autonomous AI Database to use an Oracle Cloud Infrastructure Vault master encryption key. With customer-managed master encryption keys, Autonomous AI Database uses the master encryption key to generate the TDE master key.
-
Manage Master Encryption Keys in Azure Key Vault
Autonomous AI Database supports customer-managed Transparent Data Encryption (TDE) keys that reside in Azure Key Vault.
-
Manage Master Encryption Keys in AWS Key Management Service
Autonomous AI Database supports customer-managed Transparent Data Encryption (TDE) keys that reside in AWS Key Management Service (KMS).
-
Manage Master Encryption Keys in Oracle Key Vault
Autonomous AI Database supports customer-managed Transparent Data Encryption (TDE) keys that reside in Oracle Key Vault (OKV).
-
Switch to Oracle-Managed Encryption Keys on Autonomous AI Database
Shows the steps to switch to Oracle-managed master encryption keys on Autonomous AI Database if you are using customer-managed encryption keys.
-
View History for Customer-Managed Encryption Keys on Autonomous AI Database
You can view the key history from the Oracle Cloud Infrastructure Console or by selecting from the
V$ENCRYPTION_KEYSview. -
Notes for Using Customer-Managed Keys with Autonomous AI Database
Provides additional information and notes for using customer-managed keys with Autonomous AI Database