Contact Us

Oracle with SafeNet Data Protection

About Oracle

Oracle is the world's most complete, open, and integrated business software and hardware systems company. For more than three decades, Oracle has been helping customers manage business systems and information with reliable, secure, and integrated technologies. Oracle continues to strive to connect all levels of enterprise technology to help customers access the knowledge they need to respond to market conditions with speed and agility. Oracle offers several applications that integrate effectively with SafeNet crypto management and authentication solutions to provide users with powerful data protection solutions.

Overview

Oracle offers several applications that integrate effectively with SafeNet crypto management and authentication solutions to provide users with powerful data protection solutions.

Download the brochure: Secure Data-at-Rest in Oracle Cloud with Gemalto's SafeNet KeySecure and Data Protection Portfolio

Oracle with SafeNet Data Protection

500 Oracle Parkway
Redwood Shores, California 94065
United States
North America
Main Phone: (650) 506-7000

Integrated Application(s):

    Oracle Cloud and Gemalto’s SafeNet Data Encryption & Key Management

    About Oracle Cloud

    Oracle's complete, integrated approach makes it easy for companies to get started in the cloud and even easier to expand as business grows. With Oracle Cloud Platform, developers, IT professionals, and business leaders to develop, extend, connect, and secure cloud applications and share data. Companies use Oracle's infrastructure as a service (IaaS) to run any workload in the cloud, encompassing compute, storage, network, container services, migration tools and more. Oracle Cloud facilitates companies’ efforts to innovate faster, increase productivity, and lower costs. Whether on-premises or in the cloud, Oracle Cloud Platform offers the same set of capabilities to give organizations the flexibility and choice they need to optimize their operations.

    Solution Overview

    Gemalto’s SafeNet data encryption and key management solutions work in the Oracle Cloud to allow customers to deploy client-side encryption, centralized key management and tokenization to secure their cloud workloads. Data control is a fundamental concern for organizations moving to the cloud. With SafeNet data encryption and key management solutions, organizations can keep their data safe in the cloud while demonstrating their persistent control in compliance with their regulatory obligations. 

    The following are integrated Gemalto Applications / Products:

    SafeNet KeySecure and SafeNet Virtual KeySecure centralizes the management of encryption keys and policies used for the protection of sensitive data in virtualized and cloud environments

    SafeNet Data Protection portfolio, including:

    SafeNet ProtectV

    SafeNet ProtectApp

    SafeNet ProtectFile

    SafeNet ProtectDB

    SafeNet Tokenization

     

    Solution Brief: Secure Data-at-Rest in Oracle Cloud with Gemalto's SafeNet KeySecure and Data Protection Portfolio

    Oracle TDE & PKCS#11

    Integration Guide:  SafeNet PKCS#11 with Oracle TDE 

     

    Oracle Transparent Data Encryption (TDE) provides the infrastructure necessary for implementing encryption within the database. It enables the organizations to encrypt sensitive application data such as credit card numbers on storage media completely transparent to the application (table columns or table spaces). It encrypts the data in the data files so that in case they are obtained by other parties it is not possible to access the clear text data. In the databases where TDE is configured, any user who has access on an encrypted table, can see the data in clear text because Oracle transparently decrypts the data for any user having the necessary privileges.

    TDE uses a two-tier encryption key architecture consisting of:

    • A master encryption key that is used to encrypt secondary keys used for column encryption and tablespace encryption.

    • One or more table and/or tablespace keys. These keys are used to encrypt one or more specific columns or the keys used to encrypt tablespaces. There is only one table key regardless of the number of encrypted columns in a table and it is stored in the data dictionary. The tablespace key is stored in the header of each data file of the encrypted tablespace.

    The table and tablespace keys are encrypted using the master key. The master key is stored in an External Security Module (ESM) that can be one of the following:

    • An Oracle Wallet - a secure container outside of the database. It is encrypted with a password.

    • A KeySecure - a device used to secure keys and perform cryptographic operations. Oracle interfaces to the device using a PKCS#11 library supplied by the KeySecure vendor.

    The SafeNet KeySecure provides a secure location for storing the TDE master encryption key. SafeNet PKCS#11 provides an industry-standard interface that enables the Oracle database to communicate with the SafeNet KeySecure.


     

    Oracle Weblogic: Web Services and SafeNet Enterprise HSMCertified Partner Logo

    Oracle WebLogic Server is an enterprise-ready Java Platform, Enterprise Edition (Java EE) application server that supports the deployment of distributed applications. WebLogic Server provides a standard set of APIs for creating distributed Java applications that can access databases, messaging services, and connections to external enterprise systems. Enterprises using WebLogic can deploy mission-critical applications in a robust, highly available, and scalable environment with extensive security features to keep data secure and prevent malicious attacks.
     
    SafeNet Enterprise HSMs (formerly SafeNet Luna HSMs) integrate with Oracle WebLogic Server to provide significant performance improvements by off-loading cryptographic operations from the Server to the HSMs. In addition, the SafeNet Enterprise HSMs help provide a secure server environment by protecting and managing the server’s high value SSL private key within a FIPS 140-2 certified hardware security module.
     

    Resources and Additional Information 

     

    Oracle WebLogic Server with SafeNet Enterprise HSM Integration Guide

     

    Oracle iPlanet Web server: Web Server and SafeNet Enterprise HSMCertified Partner Logo

    Oracle iPlanet Web Server delivers a secure infrastructure for hosting different web technologies and medium and large business applications. iPlanet Web Server is ideal for enterprise deployments because it can handle high throughput requirements, reduce the security vulnerabilities while maximizing uptime, and lower operational and deployment costs for enterprises.

    SafeNet Enterprise (formerly Luna SA) HSM integrates via the PKCS#11 standard with Oracle iPlanet Web Server to provide significant performance improvements by off-loading cryptographic operations from the Server to the HSM. In addition, SafeNet Enterprise HSMs help provide a secure server environment by protecting and managing the server’s high value SSL private key within a FIPS 140-2 certified hardware security module.

    Resources and Additional Information

    SafeNet Enterprise HSM Product Brief

    SafeNet Enterprise HSM with Oracle iPlanet Web Server

     

    Oracle Database 11g: Database and File and SafeNet Enterprise HSMCertified Partner Logo

    Oracle Advanced Security, an option to Oracle Database 11g, helps address privacy and regulatory requirements. Oracle Advanced Security provides data encryption and strong authentication services to the Oracle database, safeguarding sensitive data against unauthorized access to the network, operating system or through theft of hardware or backup media.

    The secure storage of master encryption keys is the foundation of any robust security solution. The integration of SafeNet Enterprise (formerly Luna SA) hardware security modules (HSMs) with Oracle Advanced Security transparent data encryption (TDE) allows for the Oracle master encryption keys to be stored in the HSM, offering greater database security and centralized key management. The master encryption key never leaves the secure confines of the HSM. Oracle integrates with SafeNet Enterprise HSM to provide users with a powerful combined Gemalto and Oracle Database 11g Database and File Encryption solution.

    The TDE master encryption key is part of a two-tiered key architecture that protects the encryption keys used to encrypt the data. The TDE master key can be stored with minimal security, in software only in an Oracle Wallet (a PKCS#12 formatted file), or in a highly secure and auditable format in the SafeNet Enterprise HSM. This two-tiered key architecture allows for easy re-keying and high performance.

    Resources and Additional Information

      SafeNet Enterprise HSM and Oracle 11g Solution Brief

      Oracle Database and SafeNet Enterprise HSM Integration Guide

      Oracle Database TDE with SafeNet PSE HSM Integration Guide

       

    Back to Partner Search
    Back to Top

    Contact Us

    Thank you for your interest in our products. Please fill out and submit the form to receive more information about Gemalto or to be contacted by a Gemalto specialist.

    Your Information

    * Email Address:  
    * First Name:  
    * Last Name:  
    * Company Name:  
    * Phone:  
    * Country:  
    * State (US Only):  
    * Province (Canada/Australia Only):  
    Comments:  
     


    By submitting this form I agree to receive information from Gemalto and its affiliates as described in our Privacy statement.