1 Introduction to Large Objects and SecureFiles
Large Objects are used to hold large amounts of data inside Oracle Database, SecureFiles provides performance comparable to file system performance, and DBFS provides file system interface to files stored in Oracle Database.
- Changes in Oracle Database
The following are the changes in SecureFiles and Large Objects Developer's Guide for Oracle Database. - What Are Large Objects?
Large Objects (LOBs), SecureFiles LOBs, and Database File System (DBFS) work together with various database features to support application development. - Where Should We Use LOBs?
Large objects are suitable for semistructured and unstructured data. - LOB Classifications
LOBs store a variety of data such as audio, video, documents, and so on. Based on the type of data stored in the LOB or memory management mechanism used, there are different classifications. - LOB Locator and LOB Value
A LOB instance has a locator and a value. A LOB locator is a reference, or a pointer, to where the LOB value is physically stored. The LOB value is the data stored in the LOB. - LOB Restrictions
You have to keep a few restrictions in mind while working with LOB data. - How to Navigate This Book
This section elaborates how to navigate this book using a flow chart that provides information about the relevant chapters you must read for understanding various concepts or performing various tasks.
1.1 Changes in Oracle Database
The following are the changes in SecureFiles and Large Objects Developer's Guide for Oracle Database.
- Updates to Oracle Database Security 21c
Oracle Database release 21c has one new security update that applies to all releases starting from release 11.2.
Parent topic: Introduction to Large Objects and SecureFiles
1.1.1 Updates to Oracle Database Security 21c
Oracle Database release 21c has one new security update that applies to all releases starting from release 11.2.
Security Update for Native Encryption
Oracle provides a patch that you can download to address necessary security enhancements that affect native network encryption environments in Oracle Database release 11.2 and later.
This patch is available in My Oracle Support note 2118136.2.
The supported algorithms that have been improved are as follows:
- Encryption algorithms: AES128, AES192 and AES256
- Checksumming algorithms: SHA1, SHA256, SHA384, and SHA512
Algorithms that are deprecated and should not be used are as follows:
- Encryption algorithms: DES, DES40, 3DES112, 3DES168, RC4_40, RC4_56, RC4_128, and RC4_256
- Checksumming algorithm: MD5
If your site requires the use of network native encryption, then you must download the patch that is described in My Oracle Support note 2118136.2. To enable a smooth transition for your Oracle Database installation, this patch provides two parameters that enable you to disable the weaker algorithms and start using the stronger algorithms. You will need to install this patch on both servers and clients in your Oracle Database installation.
An alternative to network native encryption is Transport Layer Security (TLS), which provides protection against person-in-the-middle attacks.
See Also:
- Choosing Between Native Network Encryption and Transport Layer Security in Oracle Database Security Guide
- Improving Native Network Encryption Security in Oracle Database Security Guide
Parent topic: Changes in Oracle Database