000038867 - Oracle Transparent Data Encryption (TDE) and RSA Identity Governance & Lifecycle

Document created by RSA Customer Support Employee on May 27, 2020Last modified by RSA Customer Support Employee on Jun 2, 2020
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000038867
Applies ToRSA Product Set: RSA Identity Governance & Lifecycle
RSA Version/Condition: 7.x
Platform (DB): Oracle
IssueCan Oracle Transparent Data Encryption (TDE) be used on an RSA Identity Governance & Lifecycle Oracle database? If so, what are the potential risks, performance impact and other caveats associated with implementing TDE in an RSA Identity Governance & Lifecycle environment?
ResolutionOracle Transparent Data Encryption (TDE) is an Oracle security database feature that transparently encrypts data at rest (data on media) in Oracle databases. TDE may be implemented at the tablespace or table column level and is transparent to business applications such as RSA Identity Governance & Lifecycle that use Oracle databases. Because TDE leverages cryptographic operations, there is some performance overhead associated with implementing TDE.

For more information on TDE, please refer to the Oracle documentation. The following references are a good starting point.
For RSA-provided databases, configuring Oracle TDE for use with the RSA Identity Governance & Lifecycle application is not licensed. For customer-supplied databases, engage your DBA team to both implement and evaluate the overhead associated with enabling Oracle TDE.

NOTE: RSA has not qualified configuring Oracle TDE with RSA Identity Governance & Lifecycle, and does not provide guidance or recommendations on using, tuning, recovery, etc. with regards to using Oracle TDE.