If your database connection is not configured to use data encryption, data is sent across the network in a format that is designed for fast transmission and can be decoded by interceptors, given some time and effort. For example, text data is often sent across the wire as clear text. Because this format does not provide complete protection from interceptors, you may want to use data encryption to provide a more secure transmission of data. For example, you may want to use data encryption in the following scenarios:
You have offices that share confidential information over an intranet.
You send sensitive data, such as credit card numbers, over a database connection.
You need to comply with government or industry privacy and security requirements.
Note: Data encryption may adversely affect performance because of the additional overhead (mainly CPU usage) required to encrypt and decrypt data.
The drivers support the following encryption methods:
Database-specific encryption (DB2 for Linux/UNIX/Windows, DB2 for z/OS only, and Oracle). DB2 defines its own encryption protocol. Oracle provides encryption through its Oracle Advanced Security feature.
Secure Sockets Layer (SSL). SSL is an industry-standard protocol for sending encrypted data over database connections. SSL secures the integrity of your data by encrypting information and providing client/server authentication.
The following tables describe the data encryption methods supported by the drivers.
Table 15. Data Encryption Methods Supported by DataDirect Connect for JDBC