Raw encryption allows you to encrypt data inside the database server into a format that can be exported and decrypted outside of the database server. The encrypted format is referred to as raw. To encrypt data in the raw format, you must specify the encryption key, the initialization vector, and optionally a padding format. To decrypt the data, you must specify the same parameter values.
You can also use the DECRYPT function to decrypt the data inside the database server.
Raw encryption is useful when:
You want to prevent database users from having access to the data You can use raw encryption to encrypt sensitive data that you do not want even your database administrators to have access to, and then decrypt the data using a client application without the use of the database server. Raw encryption is not recommended when the data needs to be encrypted and decrypted only by the database server.
You cannot use TLS encryption You can use raw encryption instead of TLS encryption. Unlike TLS encryption, raw encryption cannot prevent replay or person-in-the-middle attacks, nor can it authenticate database servers.
Discuss this page in DocCommentXchange.
|Copyright © 2014, SAP AG or an SAP affiliate company. - SAP Sybase SQL Anywhere 16.0|