There are two different types of encryption that can be used in ASE. One is encrypted columns and the other is full database encryption.
The implementation of these are different and are used based on what your encryption requirements are.
Encrypted columns: (Available since 12.5.3)
-column level encryption
-used to hide or restrict access of sensitive data
-encrypted data at rest, for specified columns
-access must be defined for users in order to "see" the data, otherwise a default can be used.
Full Database Encryption: (Available in ASE 16.0 and up)
-Data is encrypted at rest
-Traditional grant permissions determine access to tables
-encrypted data access is transparent to the user and applications, no code changes needed.
-Is not used for "hiding" sensitive data like encrypted columns, it is for encrypting data at rest.
All the run-time database encryption/decryption is done internally and is transparent to the user or application.
I hope that helps show the differences between the two types of encryption.
Thanks
Dan Thrall
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.