Method and apparatus for automatic database encryption

US 7,111,005 B1
Filed: 10/06/2000
Issued: 09/19/2006
Est. Priority Date: 10/06/2000
Status: Active Grant

First Claim

Patent Images

1. A method for managing encryption within a database system, wherein encryption is performed automatically and transparently to a user of the database system, the method comprising:

receiving a request at the database system to store data in the database system;

wherein the request is directed to one or more columns of the database system that have been designated as encrypted;

in response to the request;

creating a digest of the data using a cryptographic function, andautomatically encrypting the data within the database system using an encryption function and an encryption key, wherein information about the encryption key is stored in a metadata table, which includes information identifying the cryptographic function used to create the digest; and

storing the encrypted data in the database system.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One embodiment of the present invention provides a system for managing encryption within a database system that is managed by a database administrator, and wherein a user administrator not otherwise associated with the database system, manages users of the database system. This system performs encryption automatically and transparently to a user of the database system. The system operates by receiving a request to store data in a column of the database system. If a user has designated the column as an encrypted column, the system automatically encrypts the data using an encryption function. This encryption function uses a key stored in a keyfile managed by the security administrator. After encrypting the data, the system stores the data in the database system using a storage function of the database system.

153 Citations

27 Claims

1. A method for managing encryption within a database system, wherein encryption is performed automatically and transparently to a user of the database system, the method comprising:
- receiving a request at the database system to store data in the database system;
  
  wherein the request is directed to one or more columns of the database system that have been designated as encrypted;
  
  in response to the request;
  
  creating a digest of the data using a cryptographic function, andautomatically encrypting the data within the database system using an encryption function and an encryption key, wherein information about the encryption key is stored in a metadata table, which includes information identifying the cryptographic function used to create the digest; and
  
  storing the encrypted data in the database system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1,wherein the encryption function uses a key stored in a keyfile managed by a security administrator;
    - andwherein the encrypted data is stored using a storage function of the database system.
  - 3. The method of claim 2, further comprising:
    - receiving a request to retrieve data from a column of the database system;
      
      if the request to retrieve data is received from a database administrator, preventing the database administrator from decrypting the encrypted data;
      
      if the request to retrieve data is received from the security administrator, preventing the security administrator from decrypting the encrypted data; and
      
      if the request to retrieve data is from an authorized user of the database system, allowing the authorized user to decrypt the encrypted data.
  - 4. The method of claim 2, wherein the security administrator selects one of, data encryption standard (DES) and triple DES as a mode of encryption for a column.
  - 5. The method of claim 2, wherein the security administrator, a database administrator, and a user administrator are distinct roles, and wherein a person selected for one of these roles is not allowed to be selected for another of these roles.
  - 6. The method of claim 2, wherein managing the keyfile includes, but is not limited to:
    - creating the keyfile;
      
      establishing a plurality of keys to be stored in the keyfile;
      
      establishing a relationship between a key identifier and the key stored in the keyfile;
      
      storing the keyfile in one of,an encrypted file in the database system, anda location separate from the database system; and
      
      moving the obfuscated copy of the keyfile to a volatile memory within a server associated with the database system.
  - 7. The method of claim 6, wherein the key identifier associated with a column is stored as metadata associated with a table containing the column within the database system.
  - 8. The method of claim 6, further comprising establishing encryption parameters for a column, wherein encryption parameters include encryption mode, key length, and integrity type by:
    - entering encryption parameters for the column manually; and
      
      recovering encryption parameters for the column from a profile table in the database system.
  - 9. The method of claim 2, wherein upon receiving a request from the security administrator specifying a column to be encrypted, if the column currently contains data, the method further comprises:
    - decrypting the column using an old key if the column was previously encrypted; and
      
      encrypting the column using a new key.

10. A computer-readable storage medium storing instructions that when executed by a computer causes the computer to perform a method for managing encryption within a database system, wherein encryption is performed automatically and transparently to a user of the database system, the method comprising:
- receiving a request at the database system to store data in the database system;
  
  wherein the request is directed to one or more columns of the database system that have been designated as encrypted;
  
  in response to the request;
  
  creating a digest of the data using a cryptographic function, andautomatically encrypting the data within the database system using an encryption function and an encryption key, wherein information about the encryption key is stored in a metadata table, which includes information identifying the cryptographic function used to create the digest; and
  
  storing the encrypted data in the database system.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The computer-readable storage medium of claim 10,wherein the encryption function uses a key stored in a keyfile managed by a security administrator;
    - andwherein the encrypted data is stored using a storage function of the database system.
  - 12. The computer-readable storage medium of claim 11, the method further comprising:
    - receiving a request to retrieve data from a column of the database system;
      
      if the request to retrieve data is received from a database administrator, preventing the database administrator from decrypting the encrypted data;
      
      if the request to retrieve data is received from the security administrator, preventing the security administrator from decrypting the encrypted data; and
      
      if the request to retrieve data is from an authorized user of the database system, allowing the authorized user to decrypt the encrypted data.
  - 13. The computer-readable storage medium of claim 11, wherein the security administrator selects one of, data encryption standard (DES) and triple DES as a mode of encryption for a column.
  - 14. The computer-readable storage medium of claim 11, wherein the security administrator, a database administrator, and a user administrator are distinct roles, and wherein a person selected for one of these roles is not allowed to be selected for another of these roles.
  - 15. The computer-readable storage medium of claim 11, wherein managing the keyfile includes, but is not limited to:
    - creating the keyfile;
      
      establishing a plurality of keys to be stored in the keyfile;
      
      establishing a relationship between a key identifier and the key stored in the keyfile;
      
      storing the keyfile in one of,an encrypted file in the database system, anda location separate from the database system; and
      
      moving the obfuscated copy of the keyfile to a volatile memory within a server associated with the database system.
  - 16. The computer-readable storage medium of claim 15, wherein the key identifier associated with the column is stored as metadata associated with a table containing a column within the database system.
  - 17. The computer-readable storage medium of claim 15, wherein the method further comprises establishing encryption parameters for a column, wherein encryption parameters include encryption mode, key length, and integrity type by:
    - entering encryption parameters for the column manually; and
      
      recovering encryption parameters for the column from a profile table in the database system.
  - 18. The computer-readable storage medium of claim 11, wherein upon receiving a request from the security administrator specifying a column to be encrypted, if the column currently contains data, the method further comprises:
    - decrypting the column using an old key if the column was previously encrypted; and
      
      encrypting the column using a new key.

19. An apparatus that facilitates managing encryption within a database system, wherein encryption is performed automatically and transparently to a user of the database system, comprising:
- a receiving mechanism that is configured to receive a request at the database system to store data in the database system;
  
  wherein the request is directed to one or more columns of the database system that have been designated as encrypted;
  
  a digest creating mechanism configured to create a digest of the data using a cryptographic function;
  
  an encrypting mechanism that is configured to automatically encrypt the data within the database system using an encryption function and an encryption key, wherein information about the encryption key is stored in a metadata table, which includes information identifying the cryptographic function used to create the digest; and
  
  a storing mechanism that is configured to store the encrypted data in the database system.
- View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
- - 20. The apparatus of claim 19,wherein the encryption function uses a key stored in a keyfile managed by a security administrator;
    - andwherein the encrypted data is stored using a storage function of the database system.
  - 21. The apparatus of claim 20, further comprising:
    - the receiving mechanism that is further configured to receive a request to retrieve data from a column of the database system;
      
      an access mechanism that is configured to prevent a database administrator and the security administrator from decrypting the encrypted data; and
      
      wherein the access mechanism is configured to allow an authorized user of the database system to decrypt the encrypted data.
  - 22. The apparatus of claim 20, further comprising a selection mechanism that is configured to select one of, data encryption standard (DES) and triple DES as a mode of encryption for a column.
  - 23. The apparatus of claim 20, wherein the security administrator, a database administrator, and a user administrator are distinct roles, and wherein a person selected for one of these roles is not allowed to be selected for another of these roles.
  - 24. The apparatus of claim 20, further comprising:
    - a creating mechanism that is configured to create the keyfile;
      
      an establishing mechanism that is configured to establish a plurality of keys to be stored in the keyfile;
      
      wherein the establishing mechanism is further configured to establish a relationship between a key identifier and the key stored in the keyfile;
      
      wherein the storing mechanism is further configured to store the keyfile in one of,an encrypted file in the database system, anda location separate from the database system; and
      
      a moving mechanism that is configured to move the obfuscated copy of the keyfile to a volatile memory within a server associated with the database system.
  - 25. The apparatus of claim 24, wherein the key identifier associated with a column is stored as metadata associated with a table containing the column within the database system.
  - 26. The apparatus of claim 24, wherein the establishing mechanism is further configured to establish encryption parameters for a column, wherein encryption parameters include encryption mode, key length, and integrity type, and wherein the establishing mechanism includes:
    - an entering mechanism that is configured to enter encryption parameters for the column manually; and
      
      a recovering mechanism that is configured to recover encryption parameters for the column from a profile table in the database system.
  - 27. The apparatus of claim 20, further comprising:
    - a decrypting mechanism that is configured to decrypt a column using a previous key if the column was previously encrypted; and
      
      wherein the encrypting mechanism is further configured to encrypt the column using a new key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Wessman, Richard R.
Primary Examiner(s)
Rimell, Sam
Assistant Examiner(s)
Betit, Jacob F

Application Number

US09/680,599
Time in Patent Office

2,174 Days
Field of Search

713/165, 713/176, 713/153, 713/168, 713/200, 707/104.1, 707/1, 707/10, 707/2, 707/101, 707/9, 380/4, 380/25, 380/21, 380/9, 726/27
US Class Current

1/1
CPC Class Codes

G06F 21/604   Tools and structures for ma...

G06F 21/6227   where protection concerns t...

G06F 21/6245   Protecting personal data, e...

G06F 2221/2107   File encryption

G06F 2221/2141   Access rights, e.g. capabil...

H04L 9/0894   Escrow, recovery or storing...

H04L 9/14   using a plurality of keys o...

Y10S 707/99939   Privileged access

Method and apparatus for automatic database encryption

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

153 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for automatic database encryption

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

153 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links