Transport-layer security

Separately licensed component required

ECC encryption and FIPS-certified encryption require a separate license. All strong encryption technologies are subject to export regulations.

See Separately licensed components.

Transport-layer security, an IETF standard protocol, secures client/server communications using digital certificates and public-key cryptography. Transport-layer security enables encryption, tamper detection, and certificate-based authentication.

You can use transport-layer security to:

  • Secure communications between the SQL Anywhere database server and client applications.

  • Secure communications between the MobiLink server and MobiLink clients.

  • Set up a secure SQL Anywhere web server.

Secure communication begins with an exchange of messages (a handshake) including:

  • Server authentication   Transport-layer security uses server certificates to establish and maintain a secure connection. You create unique certificate files for each server. You can use server authentication for SQL Anywhere client/server communication or for MobiLink synchronization:

    • For SQL Anywhere client/server communication, a database client verifies the identity of a SQL Anywhere database server.

    • For MobiLink synchronization, a MobiLink client (SQL Anywhere or UltraLite) verifies the identity of a MobiLink server.

 Efficiency
 Certificates
 Database file encryption

TLS support
FIPS-approved encryption technology
Setting up transport-layer security
Creating digital certificates
Encrypting SQL Anywhere client/server communications
Encrypting SQL Anywhere web services
Encrypting MobiLink client/server communications
Certificate utilities