We have an exisitng 3rd party J2EE application on a DB2 (AIX) database and the policy requires that a few columns such as SSN, DoB be encrypted while 'at rest'. I have explored a few options such as the ENCRYPT/DECRYPT functions and TRIGGERS/VIEWS however it seems that they all require some changes to the application. I have come across Field Procedures (FIELDPROC), not sure if it is available outside IBM i systems. Any ideas?
The INSERT/UPDATE/SELECT sql are within the application and to change them to use ENCRYPT/DECRYPT functions whenever the columns in question are mentioned will have a huge impact. It may not be possible cosidering its a 3rd party application.