Sybase SQL Anywhere database files and log files that are used as part of the Unwired Platform data tier can be encrypted. The databases that use this database type are the CDB, the monitoring database, and the domain log database.
- Stop all Sybase Unwired Platform services.
- From dbisql, issue:
CREATE ENCRYPTED DATABASE ‘newdbfile’ FROM ‘existingdbfile’ KEY ‘someKey’ ALGORITH ‘algorithm’
Supported algorithms include:
- SIMPLE
- AES
- AES256
- AES_FIPS
- AES256_FIPS
FIPS options areavailable only as a separately licensed option for SQLAnywhere.
- Once the database files and log files are encrypted:
- Shut down the database server and modify its start-up to use the encrypted copy.
- Change the database command line options to include the -ek <encryption key> database option.
- Start the database server then restart all stopped services.