Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Where best to store encryption key for dbms_crypto?

user12240205Jan 19 2012 — edited Jan 24 2012

We want to use dbms_crypto to encrypt pwds.

Thing is with the encryption key. We now store the encryption key in the package itself.

When we deploy the pkg we wrap it.

That gives some security, but if we loose the source code we loose the key and also somebody who has access to the pkg spec can get the key.

What is the solution to this???

We can't store these in tables also since users can read it.

Locked Post

New comments cannot be posted to this locked post.

Locked on Feb 21 2012

Added on Jan 19 2012

#database-security, #database-security-general

9 comments

1,882 views