Can Oracle Transparent Data Encryption (TDE) be used on an RSA Identity Governance & Lifecycle Oracle database? If so, what are the potential risks, performance impact and other caveats associated with implementing TDE in an RSA Identity Governance & Lifecycle environment?
Oracle Transparent Data Encryption (TDE) is an Oracle security database feature that transparently encrypts data at rest (data on media) in Oracle databases. TDE may be implemented at the tablespace or table column level and is transparent to business applications such as RSA Identity Governance & Lifecycle that use Oracle databases. Because TDE leverages cryptographic operations, there is some performance overhead associated with implementing TDE.
For more information on TDE, please refer to the Oracle documentation. The following references are a good starting point.
For RSA-provided databases, configuring Oracle TDE for use with the RSA Identity Governance & Lifecycle application is not licensed. For customer-supplied databases, engage your DBA team to both implement and evaluate the overhead associated with enabling Oracle TDE.
NOTE: RSA has not qualified configuring Oracle TDE with RSA Identity Governance & Lifecycle, and does not provide guidance or recommendations on using, tuning, recovery, etc. with regards to using Oracle TDE.