October 2005
Intermediate to advanced
454 pages
14h 44m
English
Content preview from Oracle PL/SQL for DBAsBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Conclusion
In this chapter, we have looked at encryption, key management, hashing, and related concepts. Let’s summarize the key concepts here: Encryption of data is the disguising of the data so its true meaning is not visible. It requires three basic ingredients—the input data, an encryption key, and an encryption algorithm. There are two fundamental methods of encryption: asymmetric or public key encryption, where the keys used to encrypt and decrypt are different; and symmetric key encryption, where the keys are the same. The former is typically used in data transmission and requires elaborate setup, while the latter is relatively simple to implement.
The most important and challenging aspect of building an encryption infrastructure is not using the APIs themselves, but building a reliable and secure key-management system. There are a variety of different ways to do that: you can use the database, the filesystem, or both as a key store. You can use a single key for the entire database, one key per row of the table, or something in between. You can use two different keys: one regular key stored somewhere and a master key stored at a different location. The key that is used to encrypt data is not the one stored, but is a bitwise XOR operation of the master and stored keys. If either one is compromised, the encrypted data still cannot be decrypted unless the other one is accessible as well.
Sometimes it is not necessary to hide data, but we nevertheless have to ensure that it has ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.