| Oracle FIPS Flagging Version 140-3 |
|---|
| General Information | ||
| Library Note |
|
|
| Purpose | FIPS 140-3 is the current U.S. and Canadian government standard for validating cryptographic modules. FIPS ensures that sensitive data is securely encrypted and and aligns with international ISO standards (ISO/IEC 19790). FIPS sets rigorous requirements for security levels (1-4) and testing by the Cryptographic Module Validation Program (CMVP), making it the benchmark for both government and private sectors. FIPS specifies encryption algorithms and mandates strict testing of firmware, hardware, and software to protect against vulnerabilities. Key Aspects Cryptographic Module: The core component that performs encryption, decryption, and key management. Security Levels Defines four levels, from basic (Level 1) to high-security physical tamper resistance (Level 4). Testing Requires independent lab testing against specific Derived Test Requirements (DTRs). Scope Covers hardware, software, and firmware, protecting sensitive data in federal, defense, financial, and cloud systems. Proper configuration of FIPS requires compliance with US DOD DISA STIGs x and y. |
|
| Initialization Parameter | ||
SQL> show parameter fips |
||
| FIPS.ORA File | ||
| FIPS Flagging | ||
| The Federal Information Processing Standard for SQL (FIPS 127-2) requires a way to identify SQL statements that use vendor-supplied extensions | ALTER SESSION SET FLAGGER=<ENTRY | FULL | INTERMEDIATE | OFF>; |
|
conn uwclass/uwclass@pdbdev |
||
Header (new 21c)  |
||
| Related Topics |
| Built-in Functions |
| Built-in Packages |
| Database Security |
| What's New In 21c |
| What's New In 26ai |
| This site is maintained by Daniel Morgan. Last Updated: | This site is protected by copyright and trademark laws under U.S. and International law. © 1998-2026 Daniel A. Morgan All Rights Reserved | ||||||||
|
|
|||||||||