db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Suresh Thalamati (JIRA)" <derby-...@db.apache.org>
Subject [jira] Commented: (DERBY-1636) document encryption of an un-encrypted database and re-encryption with new password/key.
Date Thu, 03 Aug 2006 02:19:16 GMT
    [ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12425427 ] 
            
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------

Refence Guide Changes:
----------------------------

1) New Attributes doc for re-encryption 

newEncryptionKey= <new encryption key> 
and newBootPassword = <new password>:

above new atributes should be document under the section:
"the Setting Attributes Secttion for the Connection URL. 
http://db.apache.org/derby/docs/dev/ref/rrefattrib24612.html

Please refere to the spec for the details about these attributes. 

2) updates to the exisiting doc :

a) 
 booPassword atribute doc
 (http://db.apache.org/derby/docs/dev/ref/rrefattrib42100.html) needs to be
 updated to refelect new feature that allows configuration of a exisiting
 database for encryption. 

Modify the description Something like :

Specifies the key to use for encrypting a new database or to configure an
existing database for encryption or booting an existing encrypted database. 
Specify an alphanumeric string at least eight characters long.


In the combined attributes topic , add:

When configuring an exisiting database for encryption ,
must be combined with dataEncryption=true.

add a new example :

-- configure an existing database for encryption 
jdbc:derby:salesdb;dataEncryption=true;bootPassword=cseveryPlace



 b) dataEncryption attribute doc :
    http://db.apache.org/derby/docs/dev/ref/rrefattrib15290.html
    needs to be updated to reflect new feature that allows configuration 
    of a exisiting database for encryption. 

    some think like :

    Specifies data encryption on disk for a new database or to configure an
    existing database for encryption. (For information about data encryption, 
    see "Encrypting Databases on Disk" in the Derby Developer's Guide.)

   In Combining with other attributes topic :
   
   remove the following sentence :
   "Must be combined with create=true:

   add a  new example :
   
   -- configure an existing database for encryption 
   jdbc:derby:salesdb;dataEncryption=true;bootPassword=cLo4u922sc23aPe


c) encryptionProvider attribute doc :
   
   In combining with other attributes topic:
   
   Remove "create=true" 
   
   i.e chane following sentence
   Must be combined with create=true, bootPassword=key, and dataEncryption=true
 
   to 
  
   Must be combined with bootPassword=key, and dataEncryption=true

   
   Add a new example :

    -- configure an existing database for encryption 
    jdbc:derby:salesdb;dataEncryption=true;
    encryptionProvider=com.sun.crypto.provider.SunJCE;
    encryptionAlgorithm=DESede/CBC/NoPadding;
    bootPassword=cLo4u922sc23aPe


d) encryptionAlgorith doc (same changes as  encryption Provider):

    In combining with other attributes topic:
   
   Remove "create=true" restriction:
   
   i.e change following sentence
   Must be combined with create=true, bootPassword=key, and dataEncryption=true
 
   to 
  
   Must be combined with bootPassword=key, and dataEncryption=true

   
   Add a new example :

    -- configure an existing database for encryption 
    jdbc:derby:salesdb;dataEncryption=true;
    encryptionProvider=com.sun.crypto.provider.SunJCE;
    encryptionAlgorithm=DESede/CBC/NoPadding;
    bootPassword=cLo4u922sc23aPe




> document   encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
>                 Key: DERBY-1636
>                 URL: http://issues.apache.org/jira/browse/DERBY-1636
>             Project: Derby
>          Issue Type: Improvement
>          Components: Documentation
>    Affects Versions: 10.2.0.0
>            Reporter: Suresh Thalamati
>         Attachments: reencryptspec_1.html
>
>
> document   encryption of an un-encrypted database and re-encryption with new password/key.


-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message