Oracle 参数 TDE_KEY_CACHE 官方解释,作用,如何配置最优化建议

本站中文解释

_SIZE参数

TDE_KEY_CACHE_SIZE参数用于为Transparent Data Encryption(TDE)设置安全金钥的缓存大小。该参数的值默认为0,可设置范围为1024-131072,缓存的金钥数量不能超过参数值,建议设置未定义该参数时的默认值。

TDE_KEY_CACHE_SIZE参数不能动态修改,要想正确设置,应对Oracle数据库实例进行关闭,依次执行如下步骤:

1. 登录到SQLPLUS,首先运行SQL> shutdown immediate,完成停机数据库实例。

2. 切换到$ORACLE_HOME/bin目录,运行sqlplus /nolog,进入SQLPLUS,登录到SYS用户上。

3. 运行以下语句:alter system set tde_key_cache_size=N.

4. 重新启动Oracle数据库实例,即运行SQL> startup,该参数的设置即生效。

5. 查看当前该参数的设置方式,运行show parameter tde_key_cache_size;.

官方英文解释

Use TDE_KEY_CACHE to enable or disable sharing of Transparent Data Encryption (TDE) master encryption keys across Oracle processes.

Note:

This parameter is available only for databases in Oracle Cloud Infrastructure (OCI), including ExaCS, that use the OCI Key Management Service (KMS) for TDE key management.

Property Description

Parameter type

Boolean

Default value

false

Modifiable

ALTER SESSION, ALTER SYSTEM

Modifiable in a PDB

Yes

Range of values

true | false

Basic

No

Oracle RAC

The same value must be used on all instances.

Values:

  • true

    Enables sharing of TDE master encryption keys across Oracle processes

  • false

    Disables sharing of TDE master encryption keys across Oracle processes

Note:

This parameter is available starting with Oracle Database 21c.

See Also:

  • Oracle Database Advanced
    Security Guide
    for more information about setting the TDE master encryption key in a hardware keystore in united mode

  • Oracle Database Advanced
    Security Guide
    for more information about setting the TDE master encryption key in a hardware keystore in isolated mode


数据运维技术 » Oracle 参数 TDE_KEY_CACHE 官方解释,作用,如何配置最优化建议