Database Reference
In-Depth Information
Figure 7-1.
Secure application data query
Figure 7-2 illustrates the process for updating sensitive data. For that process we encrypt the
sensitive data on the client, using the secret password key. We do that by calling the
getCryptData()
method. Then we submit both clear text fields and encrypted sensitive fields to Oracle database by
calling the
p_update_employees_sensitive
procedure.
The key exchange must have already taken place, so that the Oracle database can use the equivalent
(original) secret password key to decrypt the data. Then the procedure executes an
INSERT
or
UPDATE
command to store the data.
Figure 7-2.
Secure application data update
