Transparent vs. Function-based Encryption
Column values can be encrypted at either of the following levels:
If you want the Actian X server to handle encryption for the application and be assured that data at rest is encrypted, declare the columns as encrypted on the CREATE TABLE statement, where you also define an encryption passphrase.
The passphrase applies to all encrypted rows and columns in the table.
If you want to control the process and provide the passphrase at the application level, use the SQL functions AES_ENCRYPT_IV and AES_DECRYPT_IV.
The passphrase can apply to a column of a set of rows.
You can combine the two levels, declaring encrypted columns on CREATE TABLE, and then storing application-encrypted data in them.
Last modified date: 08/14/2024