Creating the SYSDSO User
The database owner uses the following syntax to create the SYSDSO user:
CREATE USER SYSDSO SET PASSWORD 'PASSWORD';
You must keep the SYSDSO user for as long as you use the encryption keys created by that same SYSDSO.
If the SET PASSWORD clause is not specified, the default SYSDSO password will be the password of the person who creates the account. This makes it easier for the account creator to temporarily acquire SYSDSO privileges to create and test encryptions during development without having to login to do so. When the SYSDSO password is subsequently changed, the account creator loses this privilege. Presumably, this handoff would occur at deployment time, when transferring these duties to a security authority.