User`s guide
Oracle Advanced Security
Oracle Net Services 9-5
information in the following shared server dynamic tables to help you arrive at your
decision:
■
V$DISPATCHER
■
V$QUEUE
■
V$SHARED_SERVERS
■
V$SHARED_SERVER_MONITOR
For more information about these tables, refer to the Oracle Database Administrator's
Guide.
9.3 Oracle Advanced Security
With this release the data integrity and the cryptographic services of Oracle Advanced
Security are supported. The Secure Sockets Layer (SSL) protocol is also supported. SSL
provides authentication, encryption, and data integrity using public key infrastructure
(PKI). SSL stores authentication data, such as certificates and private keys, in an Oracle
Wallet.
For using either the data integrity, or the cryptographic services, or both, you must
sp
ecify the appropriate parameters in the
SQLNET.ORA
file.
Use the following parameters to specify whether a service (example:
crypto-checksum
ming or encryption) should be active:
SQLNET.CRYPTO_CHECKSUM_CLIENT
SQLNET.CRYPTO_CHECKSUM_SERVER
SQLNET.ENCRYPTION_CLIENT
SQLNET.ENCRYPTION_SERVER
Each of the preceding parameters defaults to
REJECTED
.
Each of the preceding parameters can have one of the following values:
Value Meaning
ACCEPTED
The service is active if the other side of the connection
specifies
REQUESTED
or
REQUIRED
and there is a compatible
algorithm available on the other side. It is inactive
otherwise.
REJECTED
The service must not be active, and the connection fails if
the other side specifies
REQUIRED
.
REQUESTED
The service is active if the other side specifies
ACCEPTED
,
REQUESTED
, or
REQUIRED
and there is a compatible algorithm
available on the other side. It is inactive otherwise.
REQUIRED
The service must be active, and the connection fails if the
other side specifies
REJECTED
or if there is no compatible
algorithm on the other side.
Use the following parameters to control which algorithms are made available for each
service on each end of a connection:
SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT
SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER
SQLNET.ENCRYPTION_TYPES_CLIENT
SQLNET.ENCRYPTION_TYPES_SERVER