> I would assume that the data transfered from a remote Oracle > datasource would NOT be encrypted during transmission??
By default, no. > Does anyone have any insight to ensuring that the data would > be encrypted? through CF? via Oracle? or some other means? You can do this several ways, depending on your environment. Oracle 10g and 9i (I think) support something called "Oracle Advanced Security", which encrypts data between the client and the server. I don't know whether previous versions provide similar functionality. I know that this can work with Oracle's own drivers, but don't know if the DataDirect drivers support it. Here's some info about using this with the Oracle thin JDBC driver: http://www.oracle.com/technology/sample_code/deploy/security/files/secure_th in_driver/readme.html You can also use encryption outside of Oracle, to encrypt all data sent between the Oracle client and the server. If both machines are running Windows, you can create an IPsec tunnel between the two machines. I'm sure there's similar functionality in Unix, but don't know what it is exactly. You could also use something like stunnel (http://www.stunnel.org/) to encrypt communication between two machines using SSL. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:250254 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
