aspose file tools
The moose likes Security and the fly likes Transparent Data Encryption on DB2 Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Elasticsearch in Action this week in the Big Data forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Transparent Data Encryption on DB2" Watch "Transparent Data Encryption on DB2" New topic
Author

Transparent Data Encryption on DB2

Abhinav Srivastava
Ranch Hand

Joined: Nov 19, 2002
Posts: 351

We have an exisitng 3rd party J2EE application on a DB2 (AIX) database and the policy requires that a few columns such as SSN, DoB be encrypted while 'at rest'. I have explored a few options such as the ENCRYPT/DECRYPT functions and TRIGGERS/VIEWS however it seems that they all require some changes to the application. I have come across Field Procedures (FIELDPROC), not sure if it is available outside IBM i systems. Any ideas?
K. Tsang
Bartender

Joined: Sep 13, 2007
Posts: 2725
    
    9

When you say "some changes to the application" when you use ENCRYPT/DECRYPT functions, is this like DB changes eg widening the column width and such or programming changes?


K. Tsang JavaRanch SCJP5 SCJD OCPJP7 OCPWCD5 OCPBCD5 OCPWSD5
Abhinav Srivastava
Ranch Hand

Joined: Nov 19, 2002
Posts: 351

The INSERT/UPDATE/SELECT sql are within the application and to change them to use ENCRYPT/DECRYPT functions whenever the columns in question are mentioned will have a huge impact. It may not be possible cosidering its a 3rd party application.
K. Tsang
Bartender

Joined: Sep 13, 2007
Posts: 2725
    
    9

I see then I suggest your app use a store procedure to do the insert/update/delete. Then if java side will be transparent. If changes are indeed needed, it will be on the DB side.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Transparent Data Encryption on DB2