Question regarding SSL/TLS Data Integrity versus Oracle Native Data Integrity

Apr 3, 2019 12:19PM

Hi all,

I'm trying to wrap my head around SSL/TLS Encryption and Data Integrity versus Oracle native network encryption and native data integrity and need some clarification. We have the following SSL parameters set on our 11204 RAC cluster:

Server FIPS.ORA:

SSLFIPS_140=TRUE

Server-side RDBMS Home SQLNET.ORA:

ENCRYPTION_WALLET_LOCATION = (SOURCE = (METHOD = FILE) (METHOD_DATA = (DIRECTORY = /etc/ORACLE/WALLETS/$ORACLE_UNQNAME/)))

SQLNET.AUTHENTICATION_SERVICES=(BEQ,TCPS)

SSL_CIPHER_SUITES=(SSL_RSA_WITH_AES_256_CBC_SHA256, SSL_RSA_WITH_AES_256_CBC_SHA)

SSL_CLIENT_AUTHENTICATION = FALSE

SSL_VERSION=1.2 or 1.0

WALLET_LOCATION=(SOURCE=(METHOD=FILE)(METHOD_DATA=(DIRECTORY=/u01/app/11.2.0.4/grid/network/admin/wallet)))

Database Security Products (MOSC)

Question regarding SSL/TLS Data Integrity versus Oracle Native Data Integrity

Howdy, Stranger!

Category Leaderboard

Top contributors this month