aspose file tools*
The moose likes Security and the fly likes Transparent Data Encryption on DB2 Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » Security
Bookmark "Transparent Data Encryption on DB2" Watch "Transparent Data Encryption on DB2" New topic
Author

Transparent Data Encryption on DB2

Abhinav Srivastava
Ranch Hand

Joined: Nov 19, 2002
Posts: 349

We have an exisitng 3rd party J2EE application on a DB2 (AIX) database and the policy requires that a few columns such as SSN, DoB be encrypted while 'at rest'. I have explored a few options such as the ENCRYPT/DECRYPT functions and TRIGGERS/VIEWS however it seems that they all require some changes to the application. I have come across Field Procedures (FIELDPROC), not sure if it is available outside IBM i systems. Any ideas?
K. Tsang
Bartender

Joined: Sep 13, 2007
Posts: 2373
    
    7

When you say "some changes to the application" when you use ENCRYPT/DECRYPT functions, is this like DB changes eg widening the column width and such or programming changes?


K. Tsang JavaRanch SCJP5 SCJD/OCM-JD OCPJP7 OCPWCD5
Abhinav Srivastava
Ranch Hand

Joined: Nov 19, 2002
Posts: 349

The INSERT/UPDATE/SELECT sql are within the application and to change them to use ENCRYPT/DECRYPT functions whenever the columns in question are mentioned will have a huge impact. It may not be possible cosidering its a 3rd party application.
K. Tsang
Bartender

Joined: Sep 13, 2007
Posts: 2373
    
    7

I see then I suggest your app use a store procedure to do the insert/update/delete. Then if java side will be transparent. If changes are indeed needed, it will be on the DB side.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Transparent Data Encryption on DB2