RE: TDE and execution plans

• From: Jonathan Lewis <jonathan@xxxxxxxxxxxxxxxxxx>
• To: Job Miller <jobmiller@xxxxxxxxx>, "Hameed, Amir" <Amir.Hameed@xxxxxxxxx>, "oracle-l@xxxxxxxxxxxxx" <oracle-l@xxxxxxxxxxxxx>
• Date: Tue, 11 Mar 2014 18:13:28 +0000

Job,

Thanks for that.

They must encrypt the "body" of the undo records and forward redo change  
vectors as a piece.  I'm surprised I can't find any signs of my having 
attempted to dump undo and redo with tablespace in place.



Regards
Jonathan Lewis
http://jonathanlewis.wordpress.com
@jloracle
________________________________
From: Job Miller [jobmiller@xxxxxxxxx]
Sent: 11 March 2014 18:01
To: Jonathan Lewis; Hameed, Amir; oracle-l@xxxxxxxxxxxxx
Subject: Re: TDE and execution plans

The docs hypothesize the overhead of tablespace encryption and mention it 
includes redo encryption as well.

http://docs.oracle.com/cd/E11882_01/network.112/e10746/asotrans.htm#ASOAG600

7.1.2.2 TDE Tablespace Encryption

TDE tablespace encryption enables you to encrypt an entire tablespace. All 
objects created in the encrypted tablespace are automatically encrypted. TDE 
tablespace encryption is useful if you want to secure sensitive data in tables. 
You do not need to perform a granular analysis of each table column to 
determine the columns that need encryption.

In addition, TDE tablespace encryption takes advantage of bulk encryption and 
caching to provide enhanced performance. While the actual performance impact on 
applications can vary, the performance overhead is roughly estimated to be in 
between 5% and 8%.

TDE tablespace encryption is a good alternative to TDE column encryption if 
your tables contain sensitive data in multiple columns, or if you want to 
protect the entire table and not just individual columns.

TDE tablespace encryption encrypts all data that is stored in an encrypted 
tablespace and its corresponding redo data.

....



________________________________
From: Jonathan Lewis <jonathan@xxxxxxxxxxxxxxxxxx>
To: "Hameed, Amir" <Amir.Hameed@xxxxxxxxx>; "oracle-l@xxxxxxxxxxxxx" 
<oracle-l@xxxxxxxxxxxxx>
Sent: Tuesday, March 11, 2014 12:06 PM
Subject: RE: TDE and execution plans

• References:
  • TDE and execution plans
    • From: Hameed, Amir
  • RE: TDE and execution plans
    • From: Jonathan Lewis
  • RE: TDE and execution plans
    • From: Hameed, Amir
  • RE: TDE and execution plans
    • From: Jonathan Lewis
  • Re: TDE and execution plans
    • From: Job Miller

Other related posts:

• » TDE and execution plans- Hameed, Amir
• » RE: TDE and execution plans- Jonathan Lewis
• » RE: TDE and execution plans- Hameed, Amir
• » RE: TDE and execution plans- Jonathan Lewis
• » Re: TDE and execution plans- Job Miller
• » RE: TDE and execution plans - Jonathan Lewis

1. Home
2. oracle-l
3. Archive
4. 03-2014

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---