SSL is the standard for securing the transmission of sensitive information, such as credit card numbers, stock trades, and banking transactions over the Internet. SSL for Adaptive Server uses Certicom Security Builder GSE, a FIPS 140-2 level 1 validated cryptography module. See validation certificate #542, dated June 2, 2005 at NIST Web site at http://csrc.nist.gov.
FIPS 140-2 certified Certicom Security Builder GSE is also used to encrypt login passwords in transmitted login packet, in memory and on disk, if the configuration parameter FIPS login password encryption is enabled.
A Security and Directory Services license is required
to use SSL and to enable the FIPS login password encryption parameter.
If the parameter is not enabled, OpenSSL security provider is used
to perform login password encryption.
Adaptive Server encrypted columns feature relies on symmetric- key cryptography, and uses the same FIPS 140-2 validated cryptographic modules as SSL. See the Users Guide for Encrypted Columns.
You must have an encrypted columns license to use the
Adaptive Server encrypted columns feature.
