Encrypts SPD Server
tables on disk. Encryption is a security mechanism that protects
table contents from users who have system access to raw SPD Server
tables. Access to tables is normally controlled by SPD Server ACLs.
The SAS Scalable Performance Data (SPD) Server 5.2: Administrator's
Guide contains detailed information about using SPD Server
ACLs to control access to tables.
When the ENCRYPT= option
setting is set to YES, SPD Server encrypts newly created tables by
blocks. To control the amount of encryption per block, use the table
option IOBLOCKSIZE=. The IOBLOCKSIZE= option specifies the number
of rows to be encrypted in each block.
Syntax
ENCRYPT= YES | NO |
AES
Arguments
YES
encrypts the data set.
The encryption method uses passwords. At a minimum, you must specify
the READ= or the PW= data set option at the same time that you specify
an ENCRYPT=YES option setting.
NO
no table encryption
is performed. NO is the default setting for the ENCRYPT= option.
AES
Specifies AES-256 encryption
of data. You must also supply a value for the ENCRYPTKEY= parameter
if you choose AES-256 encryption.
Usage Notes
-
Depending on your query
patterns, increasing or decreasing the block size can affect performance.
-
When ENCRYPT=YES, SPD
Server encrypts only table row data. Table indexes and metadata are
not encrypted.
-
When ENCRYPT=AES, both
data and index files are encrypted.
-
To encrypt SPD tables
with pass-through SQL, use only the READ= or PW= table option. With
pass-through SQL, ENCRYPT=YES is implied with these options.
-
To access an encrypted
table, the user must have appropriate ACL permissions to the table
and must provide the encryption key via the READ= or PW= table option.
-
Encrypting an SPD Server
table provides security from users that have system access to dump
raw SPD Server tables. The section about security in the
SAS
Scalable Performance Data Server: Administrator's Guide contains
more information about how to control system access to SPD Server
tables.