Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "A new paper on HTMLDB and VPD"] [Next entry: "Mark Rittman talks about Trace format utilities"]

Colin Maxwell talks about reducing the scope for encryption

I came across Colinís post today on his web log. You may remember Colinís posts about WS-Security recently. Colinís post today is called "Reducing the scope for encryption" and gives a detailed explanation on how to not encrypt the entire contents of the SOAP body, as Colin says the default behaviour is encrypt and decrypt the entire contents of the body using the JDeveloper facilities. Colin gives a great example of how to save server and client resources by only encrypting a credit card field in a step through example. As usual Colinís posts are well worth reading for anyone interested in JDeveloper and Oracle security.