Miscellaneous

Some additional security features available with Oracle GoldenGate are mentioned in this section.

FIPS 140-2

Federal Information Processing Standards (FIPS) are standards and guidelines for federal computer systems that are developed by the U.S. National Institute of Standards and Technology (NIST).

Oracle GoldenGate is FIPS-140-2 Level 1 compliant. When FIPS 140-2 settings are configured for the Oracle GoldenGate, the Oracle GoldenGate instance uses FIPS 140-2 Level 1 validated cryptographic libraries to protect data at rest and in transit over the network. Oracle GoldenGate currently uses the OpenSSL FIPS Provider as the FIPS 140-2 level 1 validated cryptography library.

Note:

Note that Oracle GoldenGate FIPS settings enforce the use of FIPS-approved algorithms for the Oracle GoldenGate only. Third-party vendor software used with Oracle GoldenGate running in FIPS mode must use only these FIPS-approved algorithms, or else the vendor software will encounter failures.

FIPS was developed in accordance with the Federal Information Security Management Act (FISMA). Although FIPS was developed for use by the federal government, many private sector entities voluntarily use these standards.

FIPS 140-2 specifies the security requirements that will be satisfied by a cryptographic module, providing four increasing, qualitative levels intended to cover a range of potential applications and environments. Security Level 1 conforms to the FIPS 140-2 algorithms, key sizes, integrity checks, and other requirements that are imposed by the regulations. FIPS 140-2 Security Level 1 requires no physical security mechanisms in the module beyond the requirement for production-grade equipment. As a result, this level allows software cryptographic functions to be performed in a general-purpose computer running on a specified operating environment.