Oracle 参数 TDE_KEY_CACHE 官方解释,作用,如何配置最优化建议
本站中文解释
_SIZE参数
TDE_KEY_CACHE_SIZE参数用于为Transparent Data Encryption(TDE)设置安全金钥的缓存大小。该参数的值默认为0,可设置范围为1024-131072,缓存的金钥数量不能超过参数值,建议设置未定义该参数时的默认值。
TDE_KEY_CACHE_SIZE参数不能动态修改,要想正确设置,应对Oracle数据库实例进行关闭,依次执行如下步骤:
1. 登录到SQLPLUS,首先运行SQL> shutdown immediate,完成停机数据库实例。
2. 切换到$ORACLE_HOME/bin目录,运行sqlplus /nolog,进入SQLPLUS,登录到SYS用户上。
3. 运行以下语句:alter system set tde_key_cache_size=N.
4. 重新启动Oracle数据库实例,即运行SQL> startup,该参数的设置即生效。
5. 查看当前该参数的设置方式,运行show parameter tde_key_cache_size;.
官方英文解释
Use TDE_KEY_CACHE
to enable or disable sharing of Transparent Data Encryption (TDE) master encryption keys across Oracle processes.
Note:
This parameter is available only for databases in Oracle Cloud Infrastructure (OCI), including ExaCS, that use the OCI Key Management Service (KMS) for TDE key management.
Property | Description |
---|---|
Parameter type |
Boolean |
Default value |
|
Modifiable |
|
Modifiable in a PDB |
Yes |
Range of values |
|
Basic |
No |
Oracle RAC |
The same value must be used on all instances. |
Values:
-
true
Enables sharing of TDE master encryption keys across Oracle processes
-
false
Disables sharing of TDE master encryption keys across Oracle processes
Note:
This parameter is available starting with Oracle Database 21c.
See Also:
-
Oracle Database Advanced
Security Guide for more information about setting the TDE master encryption key in a hardware keystore in united mode -
Oracle Database Advanced
Security Guide for more information about setting the TDE master encryption key in a hardware keystore in isolated mode