Server Encryption Level Setting; Client Encryption Level Setting; Server Encryption Selection List - Oracle Database B10772-01 Administrator's Manual

Configuration Parameters
Configuration parameters are contained in the
for each of the client and server processes. The protection placed on these files
should be equivalent to the level of a DBA.
The following configuration parameters are described in this appendix:

Server Encryption Level Setting

The server side of the negotiation notionally controls the connection settings. The
following parameter in the server file is mandatory:
SQLNET.ENCRYPTION_SERVER=REQUIRED
Setting the encryption as REQUIRED on the server side of the connection ensures
that a connection is only permitted if encryption is used, irrespective of the
parameter value on the client.

Client Encryption Level Setting

The
One of the following parameter settings in the client file is mandatory:
SQLNET.ENCRYPTION_CLIENT=(ACCEPTED|REQUESTED|REQUIRED)
A connection to the server is only possible if there is agreement between client and
server for the connection encryption. The server has this set to REQUIRED,
therefore the client must not reject encryption for a valid connection to be the result.
Failure to specify one of these values results in error when attempting to connect to
a FIPS 140-1 compliant server.

Server Encryption Selection List

The
the server is permitted to use when acting as a server in the order of required usage.
D-2 Oracle Database Advanced Security Administrator's Guide
ENCRYPTION_SERVER
ENCRYPTION_CLIENT
ENCRYPTION_TYPES_SERVER
CRYPTO_SEED
CRYPTO_SEED_CLIENT
FIPS_140
parameter specifies the connection behavior for the client.
ENCRYPTION_CLIENT
ENCRYPTION_TYPES_SERVER
sqlnet.ora
parameter specifies a list of encryption algorithms that
file that is held locally