7.2.4 Client Behavior Against Different Key States for Oracle Key Vault
This topic describes the relative behavior of the of the reader or writer client processes depending on the different encryption key states.
-
Active: Trail writer choose the highest version number (unless _Version is specified) with Active state for encryption. Trail reader can use this (key, version number) to decrypt the trail.
-
Preactive: Trail writer ignores the key and version number with this state.
-
Deactivated: Trail writer ignores the key and version number with this state. Trail file reader retrieves and uses this key and version number to decrypt the trail if it is deactivated or compromised.
-
Compromised: Trail writer ignores the key and version number with this state. Trail file reader retrieves and uses this key and version number to decrypt the trail if it is deactivated or compromised.
-
Destroyed: Trail writer ignores the key and version number with this state. Trail file reader generates an error and abends if the key and version number required to decrypt is in this state.
-
Destroyed-Compromised: Trail writer ignores the key and version number with this state. Trail file reader generates an error and abends if the key and version number required to decrypt is in this state.