Home
SecurityYou can secure your Informix® database server and the data that is stored in your Informix® databases. You can encrypt data, secure connections, control user privileges and access, and audit data security.
Security in HCL Informix®The Informix® Security Guide documents methods for keeping your data secure by preventing unauthorized viewing and altering of data or database objects, including how to use the secure-auditing facility of the database server.
Securing data
Network data encryptionUse network encryption to encrypt data transmitted between server and client, and between server and other server.
Communication support modules for data transmission encryptionYou can use the communication support modules (CSMs) to encrypt data transmissions, including distributed queries, over the network.
Network data encryption syntaxYou must specify network encryption libraries and options in the concsm.cfg file.
Invoking an encryption parameters file in concsm.cfgYou can configure encryption options by setting encryption parameters in a file and then invoking it in the concsm.cfg file.

Invoking an encryption parameters file in concsm.cfg

You can configure encryption options by setting encryption parameters in a file and then invoking it in the concsm.cfg file.

In the encryption parameters file that you specify in the concsm.cfg file, each option has the following form:

PARAMETER_NAME value

Use the following parameters to set encryption options:

ENCCSM_CIPHERS: Ciphers to be used
ENCCSM_MAC: MAC levels
ENCCSM_MACFILES: MAC file locations
ENCCSM_SWITCH: Cipher and key change frequency

The following rules apply to the parameter values:

Each entry must be of the form PARAMATER_NAME value separated by white spaces (for example, ENCCSM_MAC medium,high and ENCCSM_MACFILES /usr/local/bin/mac1.dat,/usr/local/bin/mac2.dat,builtin).
Note: White spaces are not allowed within a value.
Each parameter must have one entry in the configuration file. If multiple entries exist, only the first entry is used.
Default values are used if a parameter does not exist in the configuration file.
Characters after a comment character (#) are ignored; however, the path name value is not ignored.

Rate this topic

5 stars 4 stars 3 stars 2 stars 1 star

Comment on this topic.

By clicking this box, you acknowledge that you are NOT a U.S. Federal Government employee or agency, nor are you submitting information with respect to or on behalf of one. HCL provides software and services to U.S. Federal Government customers through its partners immixGroup, Inc. Contact this team at https://hcltechsw.com/resources/us-government-contact. Do not include any personal data in this Comment box.