Configure Encryption

Configure Encryption

Encryption is the process of disguising a message rendering it unreadable to anyone but the intended recipient.

To configure encryption parameters:

In the navigator pane, expand Net8 Configuration > Local > Profile.
From the list in the right pane, select Oracle Advanced Security.
Select the Encryption tab.
Select either Client or Server from the Encryption list.

Select a value from the Encryption Type list to specify the client or server behavior when negotiating encryption and integrity. The four possible values are as follows:

accepted
Service will be active if the other side of the connection specifies either "required" or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.
rejected
Service must not be active, and the connection will fail if the other side specifies "required".
requested
Service will be active if the other side of the connection specifies either "accepted", "required", or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.
required
Service must be active, and the connection will fail if the other side specifies "rejected", or if there is no compatible algorithm on the other side.

Enter an encryption seed in the Encryption Seed field: a random string of up to 256 characters. This encryption seed is used with the encryption algorithm you select in the next step.

From the Available Methods list, select an encryption algorithm, and then choose the right-arrow (<) button to move it to the Selected Methods list. The order of the methods in the Selected Methods list determines the preferred order for negotiation. The following algorithms are supported by Oracle Advanced Security:

RC4_256
256 bit key size
3DES168
Triple DES with a three-key (168 bit) option
RC4_128
128 bit key size
3DES112
Triple DES with a two-key (112 bit) option
RC4_56
56 bit key size
DES
Standard 56 bit key size
RC4_40
40 bit key size
DES40
40 bit key size

Choose File > Save Network Configuration.

Note: All Oracle Advanced Security encryption algorithms and key lengths are available for both U.S. domestic and international use.

accepted	Service will be active if the other side of the connection specifies either "required" or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.
rejected	Service must not be active, and the connection will fail if the other side specifies "required".
requested	Service will be active if the other side of the connection specifies either "accepted", "required", or "requested", and there is a compatible algorithm available on the other side; it will otherwise be inactive.
required	Service must be active, and the connection will fail if the other side specifies "rejected", or if there is no compatible algorithm on the other side.

RC4_256	256 bit key size
3DES168	Triple DES with a three-key (168 bit) option
RC4_128	128 bit key size
3DES112	Triple DES with a two-key (112 bit) option
RC4_56	56 bit key size
DES	Standard 56 bit key size
RC4_40	40 bit key size
DES40	40 bit key size