The Derby Network Client allows you to select a security mechanism by specifying a value for the securityMechanism property.
|Security mechanism||securityMechanism property value||Comments|
|User id and password||ClientDataSource.CLEAR_TEXT_PASSWORD_SECURITY (0x03)||Default if password is set|
|User id only||ClientDataSource.USER_ONLY_SECURITY (0x04)||Default if password is not set|
|Strong password substitution||ClientDataSource.STRONG_PASSWORD_SUBSTITUTE_SECURITY (0x08)||Strong password substitution cannot be used with external Derby authentication schemes (for example, LDAP). Also, this security mechanism uses the SHA1PRNG algorithm to generate a random number that gets exchanged between client and server. If you need to use this security mechanism, make sure that support for the SHA1PRNG algorithm is available in the JCE provider available with your JVM. For example, it is available with JVM version 1.4.1 and higher from Sun and with JVM version 1.4.2 and higher from IBM.|
|Encrypted user id and encrypted password||ClientDataSource.ENCRYPTED_USER_AND_PASSWORD_SECURITY (0x09)||Encryption requires a JCE implementation that supports the Diffie-Hellman algorithm with a public prime of 256 bits.|