CREATE ENCRYPTION
Go Up to Statement and Function Reference (Language Reference Guide)
Creates encryption keys for use during the encryption process.
CREATE ENCRYPTION key-name for AES | for DES
Argument | Description |
---|---|
Key-name |
Name associated with the encryption key. Name must be unique. |
For AES|DES |
Indicates the level of encryption InterBase will apply to the encrypted data. Advanced Encryption Standard (AES) is considered a strong encryption scheme and requires a license to use with InterBase. Data Encryption Standard (DES) is considered a weak encryption scheme that requires no special license. |
Description: CREATE ENCRYPTION
creates an encryption key. Only a SYSDSO (Data Security Owner) can create an encryption key. An encryption key is used to encrypt pages and/or columns of a database. The database owner uses an encryption key to perform encryption on a specific database or column. InterBase stores encryption keys in the RDB$ENCRYPTIONS
system table.
Three new columns have been added to the RDB$RELATIONS_FIELDS table: RDB$ENCRYPTION_ID, RDB$DECRYPT_DEFAULT_VALUE and RDB$DECRYPT_DEFAULT_SOURCE to support the database page and column-level encryption as well.
Example: The following isql
statement creates an encryption key called revenue_key using the AES encryption scheme and a length of 192 bits:
CREATE ENCRYPTION revenue_key FOR AES WITH LENGTH 192 BITS