All WebCenter products now support TDE encryption of all WebCenter Schemas. TDE encryption is often utilized by enterprises to meet public and private privacy and security mandates. The TDE architecture utilizes two key types to encrypt/decrypt data:
- A TDE Master Encryption Key is stored in a Keystore outside of the database.
- TDE table keys on the database level that are decrypted by the Master Encryption Key.
TDE is only capable of encrypting data ‘At Rest,’ meaning that data ‘in-transit’ or ‘in-use’ is not protected by TDE encryption.
How to Encrypt WebCenter Schemas with TDE:
The Repository Creation Utility (RCU) now automatically detects databases with TDE enabled. If TDE is enabled on your database, RCU will display new options for encrypting the schemas with TDE.