Encrypts SPD Server
tables on disk. Encryption is a security mechanism that protects
table contents from users who have system access to raw SPD Server
tables. Access to tables is normally controlled by SPD Server ACLs.
The S
AS Scalable Performance Data (SPD) Server 5.1: Administrator's
Guide contains detailed information about using SPD Server
ACLs to control access to tables.
When the ENCRYPT= option
setting is set to YES, SPD Server encrypts newly created tables by
blocks. To control the amount of encryption per block, use the table
option IOBLOCKSIZE=. The IOBLOCKSIZE= option specifies the number
of rows to be encrypted in each block.
YES
encrypts the data set.
The encryption method uses passwords. At a minimum, you must specify
the READ= or the PW= data set option at the same time that you specify
an ENCRYPT=YES option setting.
NO
no table encryption
is performed. NO is the default setting for the ENCRYPT= option.
AES
Specifies AES-256 encryption
of data. You must also supply a value for the ENCRYPTKEY= parameter
if you choose AES-256 encryption.
-
Depending on your query
patterns, increasing or decreasing the block size can affect performance.
-
When ENCRYPT=YES, SPD
Server encrypts only table row data. Table indexes and metadata are
not encrypted.
-
When ENCRYPT=AES, both
data and index files are encrypted.
-
To encrypt SPD tables
with pass-through SQL, use only the READ= or PW= table option. With
pass-through SQL, ENCRYPT=YES is implied with these options.
-
To access an encrypted
table, the user must have appropriate ACL permissions to the table
and must provide the encryption key via the READ= or PW= table option.
-
Encrypting an SPD Server
table provides security from users that have system access to dump
raw SPD Server tables. The section about security in the
SAS
Scalable Performance Data Server: Administrator's Guide contains
more information about how to control system access to SPD Server
tables.