encryptionProvider=providerName attribute

Function

Specifies the provider for data encryption. For information about data encryption, see "Encrypting databases on disk" in the Derby Developer's Guide.

If this attribute is not specified, the default encryption provider is the one included in the JVM that you are using.

Combining with other attributes

The encryptionProvider=providerName attribute must be combined with the dataEncryption=true attribute and with either the bootPassword=key or the encryptionKey=key attribute. You can also use the encryptionAlgorithm=algorithm attribute to specify the encryption algorithm.

For an existing, unencrypted database for which authentication and SQL authorization are both enabled, only the database owner can perform encryption or reencryption. Please see "Enabling user authentication" and "Setting the SQL standard authorization mode" in the Derby Developer's Guide for more information.

Examples

-- create a new, encrypted database
jdbc:derby:encryptedDB;create=true;dataEncryption=true;
    encryptionProvider=com.sun.crypto.provider.SunJCE;
    encryptionAlgorithm=DESede/CBC/NoPadding;
    bootPassword=cLo4u922sc23aPe
-- configure an existing database for encryption 
jdbc:derby:salesdb;dataEncryption=true; 
    encryptionProvider=com.sun.crypto.provider.SunJCE; 
    encryptionAlgorithm=DESede/CBC/NoPadding; 
    bootPassword=cLo4u922sc23aPe