Oracle Advanced Security
Oracle Advanced Security, formerly known as Secure Network Services and then Advanced Network Services, is an add-on package that provides encryption services. Oracle Advanced Security provides additional security functionality in three main areas:
- Network security
Includes encrypting messages going over Oracle Net Services, implementing Secure Sockets Layer (SSL) encryption and support for RADIUS, Kerberos, smart cards, token cards, and biometric authentication.
- Enterprise user security
Includes the use of a wide variety of third-party directory support, such as LDAP directories, which can be used to implement single signon capability. Oracle Internet Directory (OID), described in the next section, is included with Oracle Advanced Security.
- Public key infrastructure security
Includes support for standard X.509 Version 3 certificates. Oracle works with major PKI service vendors, such as Baltimore Technologies and VeriSign, to ensure coordination with their trusted roots.
Oracle Advanced Security embeds these services in the Oracle Net Services layer, which implements communications between a client and a server, as discussed in Chapter 5. Oracle Advanced Security can also be used with a thin JDBC driver that does not include Oracle Net Services.
Oracle Advanced Security includes Oracle Enterprise Security Manager, a GUI interface for managing enterprise users and domains.
You also can encrypt data on your server with Oracle9i, through the use of the DBMS_OBFUSCATION_TOOLKIT ...