• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Transparent Data Encryption on DB2

 
Abhinav Srivastava
Ranch Hand
Posts: 354
Eclipse IDE Java Oracle
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
We have an exisitng 3rd party J2EE application on a DB2 (AIX) database and the policy requires that a few columns such as SSN, DoB be encrypted while 'at rest'. I have explored a few options such as the ENCRYPT/DECRYPT functions and TRIGGERS/VIEWS however it seems that they all require some changes to the application. I have come across Field Procedures (FIELDPROC), not sure if it is available outside IBM i systems. Any ideas?
 
K. Tsang
Bartender
Posts: 3457
14
Android Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
When you say "some changes to the application" when you use ENCRYPT/DECRYPT functions, is this like DB changes eg widening the column width and such or programming changes?

 
Abhinav Srivastava
Ranch Hand
Posts: 354
Eclipse IDE Java Oracle
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The INSERT/UPDATE/SELECT sql are within the application and to change them to use ENCRYPT/DECRYPT functions whenever the columns in question are mentioned will have a huge impact. It may not be possible cosidering its a 3rd party application.
 
K. Tsang
Bartender
Posts: 3457
14
Android Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I see then I suggest your app use a store procedure to do the insert/update/delete. Then if java side will be transparent. If changes are indeed needed, it will be on the DB side.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic