1. Index

Index

A  C  D  E  G  H  I  J  K  L  M  N  O  P  R  S  T  U  V  X  

A

  • ad hoc tools
    • Oracle Data Redaction 1
  • ADMINISTER KEY MANAGEMENT
    • isolated mode operations 1
    • isolated mode operations not allowed 1
    • united mode operations allowed in 1
    • united mode operations not allowed 1
  • administrative access to policies, restricting 1
  • aggregate functions
    • affect on Data Redaction policy optimization 1
  • ALTER SYSTEM statement
    • how compares with ADMINISTER KEY MANAGEMENT statement 1
  • APEX_UTIL.GET_NUMERIC_SESSION_STATE function
    • Oracle Data Redaction policies (NV public function) 1
  • APEX_UTIL.GET_SESSION_STATE function
    • Oracle Data Redaction policies (V public function) 1
  • applications
    • database applications and Oracle Data Redaction 1
    • modifying to use Transparent Data Encryption 1
  • auto login keystores
    • and Transparent Data Encryption (TDE) 1
  • Automatic Storage Management (ASM)
    • keystore location configuration 1
    • moving software keystores from 1
    • multitenant database pointing to ASM location 1
    • non-OMF-compliant system pointing to ASM location 1
    • standalone database pointing to ASM location 1

C

  • CDBs
    • cloning PDBs with encrypted data 1
    • cloning PDBs with encrypted data in isolated mode 1
    • cloning PDBs wth encrypted data, about 1
    • Data Redaction masking policies 1
    • moving PDB from one CDB to another 1
    • moving PDB from one CDB to another in united mode 1
    • PDBs with encrypted data 1
    • preserving keystore passwords in PDB move operations 1
    • preserving keystore passwords in PDB move operations in united mode 1
    • remotely cloning PDBs with encrypted data in isolated mode 1, 2
    • remotely cloning PDBs with encrypted data in united mode 1, 2
  • change data capture, synchronous 1
  • closing hardware keystores 1
  • closing software keystores 1
  • column encryption
    • about 1
    • changing algorithm 1
    • changing encryption key 1
    • creating encrypted table column with default algorithm 1
    • creating encrypted table column with non-default algorithm 1
    • creating index on encrypted column 1
    • data loads from external file 1
    • data types to encrypt 1
    • existing tables
      • about 1
      • adding encrypted column to 1
      • disabling encryption 1
      • encrypting unencrypted column 1
    • external tables 1
    • incompatibilities 1
    • limitations 1
    • performance, optimum 1
    • salt 1
    • security considerations 1
    • skipping integrity check 1
  • column sensitive type discovery
    • enabling when creating a Data Redaction policy 1
  • compliance
    • Transparent Data Encryption 1
  • compression of Transparent Data Encryption data 1
  • configuring software keystores
    • creating local auto-login keystore 1
  • control files
    • lost 1

D

  • data at rest 1
  • database close operations
    • keystores 1
  • database links
    • with Oracle Data Redaction policies 1
  • database roles
    • Data Redaction policies 1
  • databases
    • about encrypting 1
    • encrypting existing 1
    • encrypting offline 1
    • encrypting online 1
  • data deduplication of Transparent Data Encryption data 1
  • data redaction
    • See: Oracle Data Redaction
  • Data Redaction supported functions 1
  • data storage
    • Transparent Data Encryption 1
  • DDL statements
    • Oracle Data Redaction policies 1
  • decryption
    • tablespaces, offline 1, 2
    • tablespaces, online 1
  • DISTINCT clause, Data Redaction policies 1
  • DML statements
    • Oracle Data Redaction policies 1

E

  • editing custom formats 1
  • editing policies 1
  • Editions
    • Transparent Data Encryption 1
  • encrypted columns
    • data loads from external files 1
  • encrypting data
    • in isolated mode 1, 2
    • in united mode 1, 2
  • encryption 1
    • See also: Transparent Data Encryption (TDE)
    • cloning PDBs with encrypted data 1
    • cloning PDBs with encrypted data in isolated mode 1
    • databases offline 1
    • databases online 1
    • encrypting future tablespaces 1
      • about 1
    • existing databases 1
    • procedure 1
    • remotely cloning PDBs with encrypted data in isolated mode 1, 2
    • remotely cloning PDBs with encrypted data in united mode 1, 2
    • supported encryption algorithms 1
    • tablespaces, offline 1
    • tablespaces, online 1
  • encryption algorithms, supported 1
  • encryption keys
    • setting in isolated mode 1
    • setting in united mode 1
  • EXEMPT REDACTION POLICY privilege
    • using with Database Vault 1
  • expressions 1
    • LENGTH functions, character string 1
    • namespace functions 1
    • Oracle Application Express 1
    • Oracle Label Security functions 1
    • SUBSTR function 1
  • external credential store, hardware keystores 1
  • external credential store, password-based software keystores 1
  • external files
    • loading data to tables with encrypted columns 1
  • external keystores 1
  • external store for passwords
    • open and close operations in CDB 1, 2
  • external tables, encrypting columns in
    • ORACLE_DATPUMP 1
    • ORACLE_LOADER 1

G

  • GROUP BY clause, Data Redaction policies 1
  • guidelines
    • materialized views and Data Redaction 1
    • recycle bin and Data Redaction 1
    • SYS_CONTEXT values and Data Redaction 1
  • guidelines, general usage
    • redacted columns and DISTINCT clause 1
    • redacted columns and GROUP BY clause 1
    • redacted columns and ORDER BY clause 1
  • guidelines, security
    • ad hoc query attacks and Data Redaction 1
    • application context value handling by Data Redaction policies 1
    • day-to-day operations and Data Redaction 1
    • DDL statements and Data Redaction policies 1
    • exhaustive SQL queries and inference and Data Redaction 1

H

  • hardware keystores
    • about 1
    • backing up 1
    • changing password in isolated mode 1
    • changing password in united mode 1
    • closing 1
    • closing in isolated mode 1
    • closing in united mode 1
    • opening, about 1
    • opening in isolated mode 1
    • opening in united mode 1
    • plugging PDBs 1
    • unplugging PDBs 1
    • using external keystore 1
  • hardware security modules
    • backing up keystores 1
    • plugging PDBs 1
    • unplugging PDBs 1

I

  • import/export utilities, original 1
  • indexes
    • creating on encrypted column 1
  • index range scans 1
  • inline views
    • Data Redaction policies order of redaction 1
    • Data Redaction redaction 1
  • intruders
    • ad hoc query attacks 1
  • isolated mode 1, 2
    • about 1
    • ADMINISTER KEY MANAGEMENT operations allowed in 1
    • ADMINISTER KEY MANAGEMENT operations not allowed in 1
    • backing up software keystores 1
    • changing PDB keystore from CDB root 1
    • configuring 1
    • configuring hardware keystores, about 1
    • configuring HSM 1
    • configuring software keystores, about 1
    • creating software keystore 1
    • creating TDE master encryption key for later use 1
    • encrypting data 1, 2
    • encryption key, setting 1
    • exporting, importing TDE master encryption keys 1
    • exporting or importing master encryption keys 1
    • hardware keystores, closing 1
    • hardware keystores, opening 1
    • lost control file 1
    • master encryption keys
      • moving key from PDB to CDB root 1
    • master encryption keys, migrating 1
    • migrating from HSM to password software keystore 1
    • migrating from password software keystore to HSM 1
    • moving encryption key into new keystore 1
    • moving PDB from one CDB to another 1
    • Oracle RAC 1
    • password change for hardware keystores 1
    • password change for software keystores 1
    • plugging PDBs with encrypted data into CDB 1
    • plugging PDB with master encryption keys stored in hardware keystore 1
    • secrets stored in hardware keystores 1
    • secrets stored in software keystores 1
    • setting new encryption key 1
    • software keystores, closing 1
    • software keystores, opening 1
    • uniting PDB keystore 1
    • unplugging PDBs 1

J

  • JSON
    • Oracle Data Redaction 1

K

  • keystore location
    • setting 1
    • setting for isolated mode 1
    • setting for united mode 1, 2
  • keystores
    • about 1
    • architecture 1
    • ASM-based 1
    • auto login 1
    • auto-login, open and close operations in CDBs 1, 2
    • backing up isolated mode password-protected software keystores
      • procedure 1
    • backing up password-protected software keystores
      • about 1
      • backup identifier rules 1
      • procedure 1
    • backing up united mode password-protected software keystores
      • procedure 1
    • changing hardware keystore password 1
    • changing passwords for protected-protected software keystores 1
    • closing hardware keystores 1
    • closing in CDBs 1, 2
    • closing software keystores 1
    • creating when PDB is closed 1
    • database close operations 1
    • deleting 1
    • deleting unused 1, 2
    • deleting unused in isolated mode 1
    • external 1
    • hardware, changing password in isolated mode 1
    • hardware, changing password in united mode 1
    • hardware, opening in isolated mode 1
    • hardware, opening in united mode 1
    • hardware keystore
      • configuration process 1
    • merging
      • about 1
      • auto-login into password-protected 1
      • one into another existing keystore 1
      • one into another existing keystore in isolated mode 1
      • reversing merge operation 1
      • two into a third new keystore 1
      • two into a third new keystore in isolated mode 1
    • migrating
      • creating master encryption key for hardware keystore-based encryption 1
      • hardware keystore to software keystore 1
      • keystore order after migration 1
      • password key into hardware keystore 1
    • migration using Oracle Key Vault 1
    • moving out of ASM 1
    • moving software keystore to a new location 1
    • multitenant database pointing to ASM location 1
    • non-OMF-compliant system pointing to ASM location 1
    • opening hardware keystores 1
    • opening in CDBs 1, 2
    • Oracle Database secrets
      • about 1
      • storing in hardware keystore 1
      • storing in software keystore 1
    • password access 1
    • password preservation in PDB move operations 1
    • password preservation in PDB move operations in united mode 1
    • reverting keystore creation operation 1
    • search order for 1
    • software, changing password in isolated mode 1
    • software, changing password in united mode 1
    • software, creating in united mode 1
    • software, opening in isolated mode 1
    • software, opening in united mode 1
    • standalone database pointing to ASM location 1
    • TDE master encryption key merge differing from import or export 1
    • using auto-login hardware keystore 1
  • keystores, software
    • configuration process 1
  • keystore type
    • setting 1
    • setting for isolated mode 1
    • setting for united mode 1
    • setting for united mode using parameter 1

L

  • LENGTH functions, character string
    • expressions 1

M

  • masking
    • See: Oracle Data Redaction
  • materialized views
    • Data Redaction guideline 1
    • Transparent Data Encryption tablespace encryption 1
  • migration
    • migrating from HSM to password software keystore 1
    • migrating from password software keystore to HSM 1
  • multitenant container databases
    • See: CDBs

N

  • namespace functions
    • expressions 1
  • nested functions
    • Data Redaction policies order of redaction 1
  • NV public function (APEX_UTIL.GET_NUMERIC_SESSION_STATE function), Data Redaction policies 1

O

  • OLS_LABEL_DOMINATES public function
    • Data Redaction policies 1
  • ONE_STEP_PLUGIN_FOR_PDB_WITH_TDE dynamic system parameter 1, 2
  • opening hardware keystores 1, 2
  • opening software keystores 1
  • operations allowed in 1, 2
  • operations not allowed in 1, 2
  • ORA-00979 error
    • not a GROUP BY expression error 1
  • ORA-28081
    • Insufficient privileges - the command references a redacted object error 1
  • ORA-28365 error
    • wallet is not open 1
  • ORA-46680 error 1
  • ORA-65040 error 1
  • Oracle Application Express
    • filtering using by session state in Data Redaction policies 1
  • Oracle Application Expression
    • expressions 1
  • Oracle Call Interface
    • Transparent Data Encryption 1
  • Oracle Database Real Application Security
    • Data Redaction 1
  • Oracle Database Vault
    • using with Data Redaction 1
  • Oracle Data Guard
    • master encryption keys, removing from standby database 1
    • TDE master encryption keys, removing from standby database 1
    • Transparent Data Encryption 1
  • Oracle Data Pump
    • encrypted columns 1
    • encrypted data 1
    • encrypted data with database links 1
    • encrypted data with dump sets 1
    • exported data from Data Redaction policies 1
    • exporting Oracle Data Redaction objects 1
    • imported data from Data Redaction policies 1
    • Oracle Data Redaction security policy 1
  • Oracle Data Redaction 1
    • about 1
    • ad hoc tools 1
    • aggregate functions 1
    • benefits 1
    • CDBs 1
    • columns with XML-generated data 1
    • creating custom format 1
    • database applications 1
    • DBMS_REDACT.ADD_POLICY procedure
      • using 1
    • DBMS_REDACT.ALTER_POLICY procedure
      • about 1
      • example 1
      • parameters required for various actions 1
      • syntax 1
    • DBMS_REDACT.DISABLE_POLICY
      • about 1
      • example 1
      • syntax 1
    • DBMS_REDACT.DROP_POLICY
      • about 1
      • examples 1
      • syntax 1
    • DBMS_REDACT.ENABLE_POLICY
      • about 1
      • example 1
      • syntax 1
    • DBMS_REDACT.UPDATE_FULL_REDACTION_VALUES procedure
      • about 1
      • syntax 1
      • using 1
    • deleting policies 1
    • editing custom format 1
    • editions 1
    • Enterprise Manager Cloud Control 1, 2, 3, 4
    • Enterprise Manager Cloud Control, about 1
    • Enterprise Manager Cloud Control workflow 1
    • exporting data using Data Pump Export 1
    • exporting objects using Data Pump 1
    • full data redaction
      • about 1
      • creating policy for 1
      • examples 1
      • modifying default value 1
      • syntax 1
    • functions used in expressions 1
    • how differs from Oracle Database Real Application Security masking 1
    • how differs from Oracle Virtual Private Database masking 1
    • importing data using Data Pump Export 1
    • inline views order of redaction 1
    • JSON 1
    • managing policies 1
    • named policy expressions
      • about 1
    • nested functions order of redaction 1
    • no data redaction
      • about 1, 2
      • creating policies for 1
      • example 1
      • syntax 1
    • Oracle Data Pump security policy 1
    • Oracle Enterprise Manager Data Masking and Subsetting Pack 1
    • partial data redaction
      • about 1
      • character types, policies for 1
      • data-time data types 1
      • example using character data type 1
      • example using data-time data type 1
      • example using fixed character format 1
      • example using number data type 1
      • formats, fixed character 1
      • number data types 1
      • syntax 1
    • policy expressions
      • about 1
      • creating 1
      • dropping 1
      • tutorial 1
      • updating 1
    • privileges for creating policies 1
    • queries on columns protected by Data Redaction policies 1
    • random data redaction
      • about 1
      • creating policies for 1
      • example 1
    • randomized data redaction
      • about 1
    • regular expression data redaction
      • creating policies for 1
      • custom, creating policies for 1
      • example 1
      • example of custom 1
      • formats 1
      • formats, creating policies for 1
      • settings for 1
      • syntax 1
    • regular expression redaction
      • about 1
    • returning null values
      • about 1
      • example 1
      • syntax 1
    • SYS schema objects 1
    • SYSTEM schema objects 1
    • use cases 1
    • when to use 1
    • WHERE clause redaction 1
  • Oracle Data Redaction, database links 1
  • Oracle Data RedactionEnterprise Manager Cloud Control
    • deleting custom format 1
  • Oracle Data Redaction formats
    • creating in Cloud Control 1
    • deleting in Cloud Control 1
    • editing in Cloud Control 1
    • Enterprise Management Cloud Control, managing in 1
    • Enterprise Manager Cloud Control, sensitive column types 1
    • Enterprise Manager Cloud Control, viewing in 1
  • Oracle Data Redaction partial redaction
    • creating policies for 1, 2
  • Oracle Data Redaction policies 1
    • about 1
    • altering 1
    • building reports 1
    • creating
      • examples 1
      • general syntax 1
      • procedure 1
    • creating in Cloud Control 1
    • deleting in Cloud Control 1
    • disabling 1
    • disabling in Cloud Control 1
    • dropping 1
    • editing in Cloud Control 1
    • enabling 1
    • Enterprise Manager Cloud Control, viewing in 1
    • exempting users from 1
    • expressions
      • by Application Express session state 1
      • by database role 1
      • by OLS label dominance 1
      • by user environment 1
    • filtering users
      • about 1
      • no filtering 1
    • finding information about 1
    • Oracle Enterprise Manager Cloud Control 1
    • redacting multiple columns in one policy 1
  • Oracle Data Redaction policy expressions
    • Cloud Control, about 1
    • creating in Cloud Control 1
    • deleting in Cloud Control 1
    • editing in Cloud Control 1
    • viewing in Cloud Control 1
  • Oracle Enterprise Manager Cloud Control 1
    • creating custom formats 1
    • creating policy expressions 1
    • deleting policy expressions 1
    • disabling policies 1
    • editing policy expressions 1
    • Oracle Data Redaction 1, 2, 3, 4, 5, 6, 7, 8
    • Oracle Data Redaction, creating policies 1
    • Oracle Data Redaction, viewing details of a policy 1
    • Oracle Data Redaction formats, viewing in 1
    • policy expressions, about 1
    • viewing policy expressions 1
  • Oracle Enterprise Manager Data Masking and Subsetting Pack
    • Oracle Data Redaction impact 1
  • Oracle GoldenGate
    • storing secrets in Oracle keystores 1
  • Oracle Key Vault
    • migration of keystores 1
  • Oracle Label Security
    • functions using Data Redaction expressions 1
  • Oracle-managed tablespaces 1
  • Oracle Real Application Clusters
    • non-shared file systems to store TDE keystores 1
    • Transparent Data Encryption 1
  • Oracle Recovery Manager
    • Transparent Data Encryption 1
  • Oracle Securefiles
    • Transparent Data Encryption 1, 2
  • Oracle Virtual Private Database (VPD)
    • Data Redaction 1
  • orapki utility
    • how compares with ADMINISTER KEY MANAGEMENT statement 1
  • ORDER BY clause, Data Redaction policies 1
  • original import/export utilities 1

P

  • passwords
    • access to for ADMINISTER KEY MANAGEMENT operations 1
    • preserving in PDB move operations 1
    • preserving in PDB move operations in united mode 1
  • PDBs
    • Data Redaction policies 1
    • finding TDE keystore status for all PDBs 1
    • master encryption keys
      • exporting 1
      • importing 1
    • unplugging with encrypted data 1
  • performance
    • Transparent Data Encryption 1
  • PKI encryption
    • backup and recovery operations 1
    • hardware keystores 1
    • master encryption key 1
    • tablespace encryption 1
  • pluggable databases
    • See: PDBs
  • policy expressions, Oracle Data Redaction 1

R

  • recycle bin
    • Data Redaction policies and 1
  • REDACTION_COLUMNS data dictionary view
    • invalid views 1
  • rekeying
    • master encryption key 1
    • TDE master encryption key in isolated mode 1
    • TDE master encryption key in united mode 1
  • reports
    • based Data Redaction policies 1
  • returning null values
    • about 1

S

  • salt
    • removing 1
  • salt (TDE)
    • adding 1
  • secrets
    • storing Oracle Database secrets in keystore
      • about 1
      • storing in hardware keystore 1
      • storing in software keystore 1
  • SecureFiles
    • Transparent Data Encryption 1, 2
  • sensitive credential data 1
  • software keystores
    • about 1
    • changing password in isolated mode 1
    • changing password in united mode 1
    • closing in isolated mode 1
    • closing in united mode 1
    • creating in united mode 1
    • opening, about 1
    • opening in isolated mode 1
    • opening in united mode 1
    • password-based using external keystore 1
  • SUBSTR function
    • expressions 1
  • synchronous change data capture 1
  • SYS_CONTEXT function
    • Data Redaction policies 1
    • SYS_SESSION_ROLES namespace used in Data Redaction 1
  • SYS_SESSION_ROLES SYS_CONTEXT namespace
    • Data Redaction 1
  • SYSTEM user
    • Data Redaction policies 1
  • SYS user
    • Data Redaction policies 1

T

  • tablespace encryption
    • about 1
    • architecture 1
    • creating encrypted tablespaces 1
    • examples 1
    • incompatibilities 1
    • opening keystore 1
    • performance, optimum 1
    • performance overhead 1
    • procedure 1
    • restrictions 1
    • security considerations for plaintext fragments 1
    • setting tablespace key 1
    • storage overhead 1
  • tablespace master encryption key
    • setting 1
  • tablespaces
    • about encrypting 1
    • comparison between offline and online conversions 1
    • Oracle managed, closed TDE keystore impact on encrypted 1
    • rekeying encryption algorithm 1
    • tablespaces
      • encrypting 1
  • tablespaces, offline decryption
    • procedure 1
  • tablespaces, offline encryption
    • about 1
    • procedure 1
  • tablespaces, online encryption
    • about 1
    • decrypting 1
    • finishing interrupted job 1
    • procedure 1
    • rekeying 1
  • TDE
    • See: Transparent Data Encryption (TDE)
  • TDE column encryption
    • restrictions 1
  • TDE master encryption key 1
    • creating for later use in isolated mode 1
    • creating for later use in united mode 1
  • TDE master encryption keys
    • activating
      • about 1
      • example 1
      • procedure 1
    • activating in isolated mode 1
    • activating in united mode 1
    • architecture 1
    • attributes 1
    • creating for later use
      • about 1
      • examples 1
      • procedure 1
    • custom attribute tags
      • about 1
      • creating 1
      • creating in isolated mode 1
      • creating in united mode 1
    • disabling not allowed 1
    • exporting 1
    • exporting in PDBs 1
    • finding currently used encryption key in united mode 1
    • finding currently used TDE master encryption key 1
    • importing 1
    • importing in PDBs 1
    • keystore merge differing from import or export 1
    • outside the databaase
      • about 1
    • outside the database
      • create 1
      • creating in isolated mode 1
      • creating in united mode 1
    • rekeying 1, 2, 3
    • removing automatically from standby database 1, 2
    • resetting in keystore 1
    • setting in keystore 1
  • Transparent Data Encryption (TDE)
    • about 1
    • about configuration 1
    • benefits 1
    • column encryption
      • about 1, 2
      • adding encrypting column to existing table 1
      • changing algorithm 1
      • changing encryption key 1
      • creating encrypted column in external table 1
      • creating index on encrypted column 1
      • creating tables with default encryption algorithm 1
      • creating tables with non-default encryption algorithm 1
      • data types supported 1
      • disabling encryption in existing column 1
      • encrypting columns in existing tables 1
      • encrypting existing column 1
      • encryption and integrity algorithms 1
      • restrictions 1
      • salt in encrypted columns 1
    • columns with identity columns 1
    • compatibility with application software 1
    • compatibility with Oracle Database tools 1
    • compression of encrypted data 1
    • configuring hardware keystores
      • about 1
      • configuration step 1
      • opening 1
      • PKCS#11 library 1
      • reconfiguring software keystore 1
      • setting master encryption key 1
      • sqlnet.ora configuration 1
    • configuring hardware keystores in isolated mode
      • reconfiguring software keystore 1
    • configuring software keystores
      • about 1
      • creating auto-login keystore 1
      • creating password-protected keystore 1
      • setting software TDE master encryption key 1
    • data deduplication of encrypted data 1
    • editions 1
    • encryption and integrity algorithms 1
    • finding information about 1
    • frequently asked questions 1
    • incompatibilities 1
    • keystore management
      • ASM-based keystore 1
      • backing up password-protected software keystores 1
      • changing hardware keystore password 1
      • changing protected-protected software keystore password 1
      • closing hardware keystores 1
      • closing software keystore 1
      • merging keystores, about 1
      • merging keystores, auto-login into password-protected 1
      • merging keystores, one into an existing 1
      • merging keystores, one into an existing in isolated mode 1
      • merging keystores, reversing merge operation 1
      • merging keystores, two into a third new keystore 1
      • merging keystores, two into a third new keystore in isolated mode 1
      • migrating password key and hardware keystore 1
      • migrating password key and hardware keystore, master encryption key creation 1
      • migrating password key and hardware keystore, reverse migration 1
      • TDE master encryption key attributes 1
    • keystores
      • about 1
      • benefits 1
      • types 1
    • keystore search order 1
    • master encryption key
      • rekeying 1
      • rekeying in united mode 1
    • master encryption key attributes
      • creating custom tags 1
    • master encryption keys
      • setting in keystore, about 1
      • setting in keystore procedure 1
    • modifying applications for use with 1
    • multidatabase environments 1
    • multitenant database pointing to ASM location 1
    • multitenant environment 1
    • non-OMF-compliant system pointing to ASM location 1
    • Oracle Call Interface 1
    • Oracle Data Guard 1
    • Oracle Data Pump
      • export and import operations on dump sets 1
      • export and import operations on encrypted columns 1
      • export operations on database links 1
    • Oracle Data Pump export and import operations
      • about 1
    • Oracle Real Application Clusters
      • about 1
      • non-shared file systems to store keystores 1
    • Oracle Recovery Manager 1
      • keystores 1
    • PDBs
      • finding keystore status for all PDBs 1
    • performance
      • database workloads 1
      • decrypting entire data set 1
      • optimum 1
      • worst case scenario 1
    • performance overheads
      • about 1
      • typical 1
    • PKI encryption 1
    • privileges required 1
    • SecureFiles 1, 2
    • security considerations
      • column encryption 1
      • general advice 1
      • platintext fragments 1
    • standalone database pointing to ASM location 1
    • storage overhead 1
    • storing Oracle GoldenGate secrets 1
    • tablespace encryption
      • about 1, 2
      • creating 1
      • encryption and integrity algorithms 1
      • examples 1
      • opening keystore 1
      • restrictions 1
      • setting master encryption key 1
    • tablespace encryption, setting with COMPATIBLE parameter 1
    • TDE master encryption key
      • rekeying in isolated mode 1
    • TDE master encryption key attributes
      • about 1
      • creating custom tags in isolated mode 1
      • creating custom tags in united mode 1
    • TDE master encryption keys
      • exporting and importing 1
    • TDE Master Encryption Keys
      • resetting in keystore 1
    • views 1
  • Transparent Data Encryption (TDE)integrity
    • column encryption
      • creating tables without integrity checks (NOMAC) 1
      • improving performance 1
    • NOMAC parameter (TDE) 1
  • Transparent Data Encryption (TDE) keystores
    • deleting 1
    • moving software keystore to a new location 1
  • transportable tablespaces 1
  • tutorials
    • named Data Redaction policy expressions 1

U

  • united mode 1, 2
    • about 1
    • about managing cloned PDBs with encrypted data 1
    • ADMINISTER KEY MANAGEMENT operations allowed in 1
    • ADMINISTER KEY MANAGEMENT operations not allowed in 1
    • backing up software keystores 1
    • cloning PDB with encrypted data 1
    • configuring, procedure 1
    • configuring, procedure using parameters 1
    • configuring hardware keystores, about 1
    • configuring HSM 1
    • configuring software keystores, about 1
    • creating software keystore 1
    • creating TDE master encryption key for later use 1
    • encrypting data 1, 2
    • encryption key, setting 1
    • finding keystore status for all PDBs 1
    • hardware keystores, closing 1
    • hardware keystores, opening 1
    • isolating PDB keystore 1
    • keystore open and close operations 1
    • master encryption keys
      • moving key from CDB root to PDB 1
    • moving encryption key into new keystore 1
    • moving TDE master encryption key into new keystore 1
    • password change for hardware keystores 1
    • password change for software keystores 1
    • remotely cloning PDBs with encrypted data 1, 2
    • remotely cloning PDB with encrypted data 1, 2
    • setting hardware keystore encryption key 1
    • software keystores, closing 1
    • software keystores, creating in 1
    • software keystores, opening 1
  • utilities, import/export 1

V

  • V$ENCRYPTION_WALLET view
    • keystore order after migration 1
  • views
    • Data Redaction 1
  • V public function (APEX_UTIL.GET_SESSION_STATE function), Data Redaction policies 1

X

  • XML generation 1