You are viewing a plain text version of this content. The canonical link for it is here.
Posted to derby-dev@db.apache.org by "Suresh Thalamati (JIRA)" <de...@db.apache.org> on 2006/08/03 03:12:13 UTC
[jira] Created: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
document encryption of an un-encrypted database and re-encryption with new password/key.
-------------------------------------------------------------------------------------------
Key: DERBY-1636
URL: http://issues.apache.org/jira/browse/DERBY-1636
Project: Derby
Issue Type: Improvement
Components: Documentation
Affects Versions: 10.2.0.0
Reporter: Suresh Thalamati
Attachments: reencryptspec_1.html
document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_ref.diff
derby1636_ref_html.zip
Attaching the updates to the Ref Manual.
The following changes were made:
Filename Topic title Updates
rrefattrib15290 dataEncryption=true updated to include encrypt existing db
rrefattrib42100 bootPassword=key updated to include encrypt existing db
rrefattrib60346 encryptionAlgorithm=algorithm updated to include encrypt existing db
rrefattrib88843 encryptionProvider=providerName updated to include encrypt existing db
rrefattribnewbootpw newBootPassword = <new password> New file
rrefattribnewencryptkey newEncryptionKey= <new encryption key> New file
I have completed the updates to the Dev Guide but have run into some problems with ANT producing the output.
Will post those updates as soon as I get the problem with ANT fixed.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.0.0
>
> Attachments: derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Reopened: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Jean T. Anderson reopened DERBY-1636:
-------------------------------------
Reopening to change fix version from 10.2.2.0 to 10.2.1.0. Jira will get updated with the right version number for the release version of 10.2.1.x.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0, 10.3.0.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
Re: [jira] Commented: (DERBY-1636) document encryption of an un-encrypted
database and re-encryption with new password/key.
Posted by "Jean T. Anderson" <jt...@bristowhill.com>.
Sunitha Kambhampati (JIRA) wrote:
> [ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430661 ]
>
> Sunitha Kambhampati commented on DERBY-1636:
> --------------------------------------------
>
> Thanks Laura. i have no more comments on the ref guide. My +1 for commit..
I'll commit derby1636_ref3.diff .
-jean
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Sunitha Kambhampati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430661 ]
Sunitha Kambhampati commented on DERBY-1636:
--------------------------------------------
Thanks Laura. i have no more comments on the ref guide. My +1 for commit..
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12425427 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
Refence Guide Changes:
----------------------------
1) New Attributes doc for re-encryption
newEncryptionKey= <new encryption key>
and newBootPassword = <new password>:
above new atributes should be document under the section:
"the Setting Attributes Secttion for the Connection URL.
http://db.apache.org/derby/docs/dev/ref/rrefattrib24612.html
Please refere to the spec for the details about these attributes.
2) updates to the exisiting doc :
a)
booPassword atribute doc
(http://db.apache.org/derby/docs/dev/ref/rrefattrib42100.html) needs to be
updated to refelect new feature that allows configuration of a exisiting
database for encryption.
Modify the description Something like :
Specifies the key to use for encrypting a new database or to configure an
existing database for encryption or booting an existing encrypted database.
Specify an alphanumeric string at least eight characters long.
In the combined attributes topic , add:
When configuring an exisiting database for encryption ,
must be combined with dataEncryption=true.
add a new example :
-- configure an existing database for encryption
jdbc:derby:salesdb;dataEncryption=true;bootPassword=cseveryPlace
b) dataEncryption attribute doc :
http://db.apache.org/derby/docs/dev/ref/rrefattrib15290.html
needs to be updated to reflect new feature that allows configuration
of a exisiting database for encryption.
some think like :
Specifies data encryption on disk for a new database or to configure an
existing database for encryption. (For information about data encryption,
see "Encrypting Databases on Disk" in the Derby Developer's Guide.)
In Combining with other attributes topic :
remove the following sentence :
"Must be combined with create=true:
add a new example :
-- configure an existing database for encryption
jdbc:derby:salesdb;dataEncryption=true;bootPassword=cLo4u922sc23aPe
c) encryptionProvider attribute doc :
In combining with other attributes topic:
Remove "create=true"
i.e chane following sentence
Must be combined with create=true, bootPassword=key, and dataEncryption=true
to
Must be combined with bootPassword=key, and dataEncryption=true
Add a new example :
-- configure an existing database for encryption
jdbc:derby:salesdb;dataEncryption=true;
encryptionProvider=com.sun.crypto.provider.SunJCE;
encryptionAlgorithm=DESede/CBC/NoPadding;
bootPassword=cLo4u922sc23aPe
d) encryptionAlgorith doc (same changes as encryption Provider):
In combining with other attributes topic:
Remove "create=true" restriction:
i.e change following sentence
Must be combined with create=true, bootPassword=key, and dataEncryption=true
to
Must be combined with bootPassword=key, and dataEncryption=true
Add a new example :
-- configure an existing database for encryption
jdbc:derby:salesdb;dataEncryption=true;
encryptionProvider=com.sun.crypto.provider.SunJCE;
encryptionAlgorithm=DESede/CBC/NoPadding;
bootPassword=cLo4u922sc23aPe
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Attachments: reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12428836 ]
Laura Stewart commented on DERBY-1636:
--------------------------------------
Suresh Thalamati <su...@gmail.com> to derby-dev
wrote:
> Thanks Laura. I also got confused when I first looked up the
> developers guide for encryption do. First section (Working with the
> database connection URL attributes) looks like more of examples to use
> the connection attributes.
> Other section where we document encrypting databases on disk
> (Encrypting databases on disk -->Working with encryption )
> seems to be right place to document the new content
> about encrypting an existing database as you described.
***(LS) I will open a separate Jira issue to fix the problem of
that there are several topics with the same title, and we want to avoid that.
We need to distinguish the info that is under each section more clearly.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.0.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429141 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
My understanding of it is;
1) users need to disable log archival then do a shutdown before attempting to encrypt a database with a new key. So our example is not actually describing all the steps to do in this scenario.
2) This is not a necessary step for encrypting the database with a new key, it is more like recommendation.
3) and this is not a common case, our users rarely use log archival!
I am ok, if you think it is better after the example as a seperate paragraph , but as a bullet point under "To encrypting a database with a new external key" does not seem right to me.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_devguide_html4.zip
derby1636_devguide4.diff
Updated the Dev Guide based on the comments from Suresh.
The updated diff and html zip file are #4
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Assigned: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart reassigned DERBY-1636:
------------------------------------
Assignee: Laura Stewart
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.0.0
>
> Attachments: reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_ref2.diff
derby1636_ref_html2.zip
Attached are the patch and html zip file for the updates to the Ref Manual.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Resolved: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart resolved DERBY-1636.
----------------------------------
Fix Version/s: 10.2.2.0
(was: 10.2.1.0)
Resolution: Fixed
Derby Info: (was: [Patch Available])
Setting this issue to "Resolved" but not closing it until Rick merges it into the 10.2 branch.
Changed Fix versions to 10.2.2.0 I hope that is correct?
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.2.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
Re: DERBY-1636 patch problem (was Re: [jira] Commented: (DERBY-1636)
document encryption of an un-encrypted database and re-encryption with
new password/key.)
Posted by "Jean T. Anderson" <jt...@bristowhill.com>.
Jean T. Anderson wrote:
...
> ouch, there's an issue with derby1636_devguide4.diff .
...
> The standby trick of doing this:
>
> svn up -r 432381
> patch -p0 -i derby1636_devguide4.diff
> svn add src/devguide/tdevdvlpcreateencryptdbextkey.dita
> ... svn add other new files as well ...
> svn up
>
> results in this error:
>
> svn: Failed to add file
> 'src/devguide/tdevdvlpcreateencryptdbextkey.dita': object of the same
> name already exists
>
> So it seems like the patch adds a file that maybe got added by a patch
> that was already committed?
btw, this file was added by derby1622_devguide_5.diff for DERBY-1622
revision 433290 on 8/21/05.
-jean
DERBY-1636 patch problem (was Re: [jira] Commented: (DERBY-1636)
document encryption of an un-encrypted database and re-encryption with
new password/key.)
Posted by "Jean T. Anderson" <jt...@bristowhill.com>.
Jean T. Anderson wrote:
> Suresh Thalamati (JIRA) wrote:
>
>> [ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430662 ]
>>
>>Suresh Thalamati commented on DERBY-1636:
>>-----------------------------------------
>>
>>I reviewed the latest changes , they look good. Thanks a lot Laura.
>>
>>+1, this patch can be committed.
>
> I'll commit this to the trunk and also merge to 10.2 (I noticed that
> Rick did the doc mega merge -- thanks, Rick!)
ouch, there's an issue with derby1636_devguide4.diff . It gets the
"Reversed (or previously applied) patch detected!" error.
The standby trick of doing this:
svn up -r 432381
patch -p0 -i derby1636_devguide4.diff
svn add src/devguide/tdevdvlpcreateencryptdbextkey.dita
... svn add other new files as well ...
svn up
results in this error:
svn: Failed to add file
'src/devguide/tdevdvlpcreateencryptdbextkey.dita': object of the same
name already exists
So it seems like the patch adds a file that maybe got added by a patch
that was already committed?
Laura, Andrew and I discussed strategies on IRC. We think the best thing
is for you to sync up your own working copy ('svn up'), then regenerate
the patch. You might need to figure out what was added to that file that
wasn't in the patch.
Sorry this one didn't go smoothly. Once we get all the doc patches
caught up we should see fewer of these sorts of problems.
-jean
Re: [jira] Commented: (DERBY-1636) document encryption of an un-encrypted
database and re-encryption with new password/key.
Posted by "Jean T. Anderson" <jt...@bristowhill.com>.
Suresh Thalamati (JIRA) wrote:
> [ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430662 ]
>
> Suresh Thalamati commented on DERBY-1636:
> -----------------------------------------
>
> I reviewed the latest changes , they look good. Thanks a lot Laura.
>
> +1, this patch can be committed.
I'll commit this to the trunk and also merge to 10.2 (I noticed that
Rick did the doc mega merge -- thanks, Rick!)
-jean
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430662 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
I reviewed the latest changes , they look good. Thanks a lot Laura.
+1, this patch can be committed.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Suresh Thalamati updated DERBY-1636:
------------------------------------
Fix Version/s: 10.2.0.0
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Fix For: 10.2.0.0
>
> Attachments: reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Derby Info: [Patch Available]
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Suresh Thalamati updated DERBY-1636:
------------------------------------
Attachment: reencrypt_devgudechanges.txt
Some thoughts on what should be documented in the developers guide for
new feature that allows encryption database with a new encryption key
or the password and configuring an un-encrypted database for encryption.
(DERBY-1156).
Thanks
-suresht
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Fix For: 10.2.0.0
>
> Attachments: reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_devguide5.diff
derby1636_devguide_html5.zip
Updated the problem with the patch.
Also identified problems in the PDF output with 2 other files (text overflow), and fixed those files as well.
Those 2 files are:
cdevcsecure60146 Booting an encrypted database
tdevdvlp40140 Booting an encrypted database
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429133 ]
Laura Stewart commented on DERBY-1636:
--------------------------------------
About your comment;
tdevcsecurenewextkey.html : (Encrypting databases with a new external key
)
1)
Following point about backup recommendation is out of place, please move it to
before the example.
"
If you disabled log archival before you applied the new encryption key, create
a new backup of the database after the database is reconfigured with new the
encryption key.
"
The example relates to step 1.
As I understand this, the user issues the URL to encrypt the database, then if the user disabled archival logging, the user then creates the backup of the database and enables log archival again.
If these are not the correct steps then please let me know what they are.
The example should be just after the step that it applies to, not at the very end of the topic.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_devguide2.diff
derby1636_devguide_html2.zip
Attached is a patch and the html zip for the Dev Guide updates.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_ref3.diff
derby1636_ref_html3.zip
Updated the Reference Manual based on Sunitha's comments.
The updated patch and html zip file are #3
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: toc.html
Use this toc with the dev guide html zip files.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Suresh Thalamati updated DERBY-1636:
------------------------------------
Attachment: reencryptspec_1.html
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Attachments: reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_devguide_html.zip
derby1636_devguide.diff
Attaching the updates to the Developers Guide.
This completes the updates to the Derby documentation for this issue.
Please review and comment.
The updated files are:
Filename Topic title Updates
cdevcsecurene88690 Encrypting databases on creation updated indexes
cdevcsecurene97760 Working with encryption updated indexes
tdevcsecurenewbootpw Encrypting databases with a new boot password New file
tdevcsecurenewextkey Encrypting databases with a new external key New file
tdevcsecureunencrypteddb Encrypting an existing database New file
tdevdvlp14496 Encrypting a database when you create it updated indexes
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.0.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
Re: [jira] Commented: (DERBY-1636) document encryption of an un-encrypted
database and re-encryption with new password/key.
Posted by Suresh Thalamati <su...@gmail.com>.
Thanks for volunteering to document this Laura.
Laura Stewart (JIRA) wrote:
> [ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12428222 ]
>
> Laura Stewart commented on DERBY-1636:
> --------------------------------------
>
> The spec indicates that the newEncryptionKey attribute should be used with the encryptionKey attribute.
> I don't see the encryptionKey attribute documented in the Derby docs... anywhere.
> Can you please check on this?
>
Thanks for volunteering to write the documentation, Laura. You are
right, documentation about encrypting a database using an external
encryption Key attribute is missing. Sunitha filed a Jira
for this issue:
https://issues.apache.org/jira/browse/DERBY-1622
It would be great, if you could document derby-1622 also.
Thanks
-suresh
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12428222 ]
Laura Stewart commented on DERBY-1636:
--------------------------------------
The spec indicates that the newEncryptionKey attribute should be used with the encryptionKey attribute.
I don't see the encryptionKey attribute documented in the Derby docs... anywhere.
Can you please check on this?
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.0.0
>
> Attachments: reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12431961 ]
Jean T. Anderson commented on DERBY-1636:
-----------------------------------------
Since everything has been committed to the trunk, 10.3 is correct for the fix version. Once merged to the 10.2 branch, adding 10.2 to the fix version is good.
With these jira issues with many patches it can be kind of difficult to figure out what got merged and what didn't. The "Subversion Commits" tab shows the svn history and helps untangle it.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.2.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Jean T. Anderson updated DERBY-1636:
------------------------------------
Fix Version/s: 10.3.0.0
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.2.0, 10.3.0.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Sunitha Kambhampati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430630 ]
Sunitha Kambhampati commented on DERBY-1636:
--------------------------------------------
Thanks Laura for taking care of my comments in the reference guide. I took a quick look ( (derby1636_ref_html2)at them and have some very minor comments.
rrefattrib60346.html
Examples, has redundant line. please remove one of them.
-- configure an existing database for encryption
-- configure an existing database for encryption
rrefattribencryptkey.html
Change this -- configure an existing database for encryption to say
-- configure an existing unencrypted database for encryption
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430690 ]
Jean T. Anderson commented on DERBY-1636:
-----------------------------------------
Committed patch derby1636_ref3.diff to trunk revision 437069 (not merged to 10.2 branch yet).
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430691 ]
Jean T. Anderson commented on DERBY-1636:
-----------------------------------------
There are problems applying patch derby1636_devguide4.diff; it adds src/devguide/tdevdvlpcreateencryptdbextkey.dita, which was added by the commit of derby1622_devguide_5.diff for DERBY-1622 revision 433290 on 8/21/05.
Details are in the thread at http://mail-archives.apache.org/mod_mbox/db-derby-dev/200608.mbox/%3c44EF8A86.1050506@bristowhill.com%3e
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
Re: [jira] Commented: (DERBY-1636) document encryption of an un-encrypted
database and re-encryption with new password/key.
Posted by Suresh Thalamati <su...@gmail.com>.
Laura Stewart (JIRA) wrote:
> [ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12428779 ]
>
> Laura Stewart commented on DERBY-1636:
> --------------------------------------
>
> I have a concern about where the encryption information is located in the Developers Guide.
> It appears in 2 sections and in some cases there are topics with different content but with
> the same titles.
>
> There is this section:
> JDBC applications and Derby basics -->Derby embedded basics -->Working with the database connection URL attributes
> that has these topic titles:
> --Using the databaseName attribute
> --Shutting down Derby or an individual database
> --Creating and accessing a database
> --Providing a user name and password
> --Encrypting a database when you create it
> --Booting an encrypted database
> --Specifying attributes in a properties object
>
> Then there is this section:
> Derby and Security -->Encrypting databases on disk -->Working with encryption
> that has these topic titles:
> --Encrypting databases on creation
> --Creating the boot password
> --Specifying an alternate encryption provider
> --Specifying an alternate encryption algorithm
> --Booting an encrypted database
> --Changing the boot password
>
> I have created these new topics:
> --Encrypting an existing database
> --Encrypting databases with a new boot password
> --Encrypting databases with a new external key
> and have them located under the section Derby and Security -->Encrypting databases on disk -->Working with encryption
> but we should take a hard look this information and the links that exist between these sections and also avoid any duplication of information.
>
Thanks Laura. I also got confused when I first looked up the
developers guide for encryption do. First section (Working with the
database connection URL attributes) looks like more of examples to use
the connection attributes.
Other section where we document encrypting databases on disk
(Encrypting databases on disk -->Working with encryption )
seems to be right place to document the new content
about encrypting an existing database as you described.
Thanks
-suresh
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12428779 ]
Laura Stewart commented on DERBY-1636:
--------------------------------------
I have a concern about where the encryption information is located in the Developers Guide.
It appears in 2 sections and in some cases there are topics with different content but with
the same titles.
There is this section:
JDBC applications and Derby basics -->Derby embedded basics -->Working with the database connection URL attributes
that has these topic titles:
--Using the databaseName attribute
--Shutting down Derby or an individual database
--Creating and accessing a database
--Providing a user name and password
--Encrypting a database when you create it
--Booting an encrypted database
--Specifying attributes in a properties object
Then there is this section:
Derby and Security -->Encrypting databases on disk -->Working with encryption
that has these topic titles:
--Encrypting databases on creation
--Creating the boot password
--Specifying an alternate encryption provider
--Specifying an alternate encryption algorithm
--Booting an encrypted database
--Changing the boot password
I have created these new topics:
--Encrypting an existing database
--Encrypting databases with a new boot password
--Encrypting databases with a new external key
and have them located under the section Derby and Security -->Encrypting databases on disk -->Working with encryption
but we should take a hard look this information and the links that exist between these sections and also avoid any duplication of information.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.0.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.0.0
>
> Attachments: reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Sunitha Kambhampati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429179 ]
Sunitha Kambhampati commented on DERBY-1636:
--------------------------------------------
Suresh wrote:
"Titile : Encrypting an encrypted database with a new key
and then sub-links under that :
Encrypting databases with a new boot password
....
Encrypting databases with a new external key "
-----------
+1. I like this title. It is specific to what it is describing.
Thanks.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Sunitha Kambhampati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429157 ]
Sunitha Kambhampati commented on DERBY-1636:
--------------------------------------------
Hi Laura,
I looked at the zip files derby1636_devguide_html and derby1636_ref_html and here are some of my minor comments. With derby-1156 feature, now we can encrypt an existing unencrypted database and encrypt an existing encrypted database. I think it might be good to explicit mention , what attributes are needed when encrypting an unencrypted database and what is needed for encrypting an encrypted database..
Thanks.
----------------
FILE: cdevcsecure97760.html
1)Title change to explicitly say "Encrypting an existing unencrypted database"
2)Title "Encrypting databases with a new boot password" , "Encrypting databases with a new external key"
I think it might be good to put these two links as sublinks to a link with title "Encryption an existing encrypted database"
Then we would have something like:
Encrypting an existing database
You can encrypt an encrypted database with a new bootPassword or external key.
Encrypting databases with a new boot password
....
Encrypting databases with a new external key
...
FILE: tdevcsecureunencrypteddb.html
3)I think this statement
"When you encrypt an existing, unencrypted database, you can specify whether the database is encrypted using a boot password or an encryption key."
should be
"
When you encrypt an existing, unencrypted database, you can specify whether the database should be encrypted using a boot password or an encryption key."
FILE: tdevcsecurenewextkey.html
4)I think it may be better to say "To encrypt" instead of "To encrypting" in
this line"To encrypting a database with a new external key:"
---------------
file:rrefattrib15290.html
5)Change the first line in function to explicitly say , configure an existing unencrypted database for encryption.
"Specifies data encryption on disk for a new database or to configure an existing unencrypted database for encryption."
With derby-1622 we have the encryptionKey=key doc changes. Please add that here.
The dataEncryption attribute must be combined with the bootPassword=key attribute or the encryptionKey=key attribute.
In the examples also, better to say explicitly that to configure an existing unencrypted database.
-- configure an existing unencrypted database for encryption
6)file:rrefattrib42100.html
Function:
Explicitly mention both in examples and in function,
that to configure an existing unencrypted database for encryption.
Where we have 'configure an existing database for encryption' use 'configure an existing unencrypted database for encryption' to make it clear.
Similarly for the other files in this zip file for reference guide.
7)Also please change the encryptionKey=Key page also that got committed with 1622.
rrefattribencryptkey.html
In function, change this "Configure an existing database for encryption" to "Configure an existing unencrypted database for encryption"
In 'combining with other attributes', for the statement starting with "When you configure an existing database for encryption..". Remove the next line. I think there is no need to specify this specifically here about encryptionAlgorithm because now we are explicitly talking about unencrypted database.
--------
FILE: rrefattribnewbootpw.html
8)Change this "Specifies a new boot password for a database. " to
say
"Specifies a new boot password for an encrypted database."
FILE:file:rrefattribnewencryptkey.html
Add the word encrypted. So change this " Specifies a new external encryption key for a database" to
say
"Specifies a new external encryption key for an encrypted database"
---------
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Laura Stewart updated DERBY-1636:
---------------------------------
Attachment: derby1636_devguide3.diff
derby1636_devguide_html3.zip
Updated files for the dev guide and created a new overview file for encrypting databases with a new key.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429167 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
Thanks for reviewing , sunitha. About u'r comments on FILE: cdevcsecure97760.html
I like your idea about putting encryting with external key and the password as sub-links. But I am not sure of the main title. ""Encryption an existing encrypted database" "
That title might mislead some users to think that , they have to repeat the encryption process to keep the data encrypted. Following title might make it more clear
Titile : Encrypting an encrypted database with a new key
and then sub-links under that :
Encrypting databases with a new boot password
....
Encrypting databases with a new external key
...
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429100 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
Thanks a lot Laura. I have few minor comments, It would be great if you
can make the following changes.
Developers Guide:
------------------
tdevcsecurenewbootpw.html : (Encrypting databases with a new boot password)
-----------
1) one case where new boot password can not be used is not mentioned here.
(It is documented in the external case). please add the following too :
"
If the database is configured with log archival for roll-forward recovery, you
must disable log archival before you can encrypt the database with a new boot password.
"
2) additional disk space requirement is not mentioned here. ( it is documented
in the external key)
"Recommendation: Ensure that you have enough free disk space before you encrypt
a database with a new boot password. In addition to the disk space required for
the current size of the database, temporary disk space is required to store the
old version of the data to restore the database back to it's original state if
the new encryption is interrupted or returns errors. All of the temporary disk
space is released back to the operating system after the database is
reconfigured to work with the new boot password."
3)
"To encrypting" does not sound good: can
we change it to : "To encrypt a database with a new boot password:
tdevcsecurenewextkey.html : (Encrypting databases with a new external key
)
1)
Following point about backup recommendation is out of place, please move it to
before the example.
"
If you disabled log archival before you applied the new encryption key, create
a new backup of the database after the database is reconfigured with new the
encryption key.
"
tdevcsecureunencrypteddb.html (Encrypting an existing database)
---------------------------------------------------------------
1)
please move the last point about the backup to before the example,
it looks out of context immediately after the example:
"
If you disabled log archival before you encrypted the database, create a new
backup of the database after the database is encrypted.
"
cdevcsecure97760.html (Working with encryption)
---------------------------------------------------
1)
Following sentence is not necessary in (Encrypting databases with a new
external key link)
"The new encryption key encrypts the database, including the existing data"
Reference Manual :
------------------
rrefattrib60346.html (encryptionAlgorithm=algorithm)
"
Combining with other attributes
The encryptionAlgorithm attribute must be combined with the bootPassword=key,
dataEncryption=true, and encryptionProvider=providerName attributes.
"
encryptionProvider is not must to specify and encryptionAlgorithm. Above
sentence should be changed to something like :
The encryptionAlgorithm attribute must be combined with the bootPassword=key,
dataEncryption=true attributes. You have the option of also specifying
encryptionProvider=providerName attribute to specify the encryption provider of
the algorithm.
rrefattribnewencryptkey.html (newEncryptionKey= <new encryption key>)
-------------------------------------------------------------------
look like reference link is messed up in the following sentence.
"
The newEncryptionKey attribute must be combined with the
rrefattribencryptkey.html#rrefattribencryptkey attribute.
"
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide_html.zip, derby1636_ref.diff, derby1636_ref_html.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12431421 ]
Jean T. Anderson commented on DERBY-1636:
-----------------------------------------
Committed patch derby1636_devguide5.diff to the trunk, revision 438307 (did not merge to the 10.2 branch). Before committing, manually edited out the Arbortext id comments in xml source for cdevcsecure60146.dita and tdevdvlp40140.dita.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Closed: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Jean T. Anderson (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=all ]
Jean T. Anderson closed DERBY-1636.
-----------------------------------
Fix Version/s: 10.2.1.0
(was: 10.2.2.0)
Resolution: Fixed
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0, 10.3.0.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide4.diff, derby1636_devguide5.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_devguide_html4.zip, derby1636_devguide_html5.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref3.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, derby1636_ref_html3.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430617 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
Thanks Laura, updates looks good. I reviewed both the reference manual and the developer guide changes. I have few minor comments in the developer guide, it would be great if you can look into them.
ip\cdevcsecure97760.html (Working with encryption)
--------------------------------------------------
In the following sentence , please change "boot key" to "boot password" (
I know that is not best one - but let us be consistent)
You can apply a new encryption key to a Derby database by specifying a new boot
key or a new external key.
change it to :
You can apply a new encryption key to a Derby database by specifying a new boot
password or a new external key.
tdevcsecurenewbootpw.html:(Encrypting databases with a new boot password)
------------------------------------------------------------------------
you might want to add :
"To encrypt a database with a new boot password:"
before
Specify the newEncryptionKey attribute in a URL and reboot the database. For .....
tdevcsecurenewkeyoverview.html (Encrypting database with new key):
-------------------------------------------------------------------
1) Please change the phrase in the first paragraph :
"after the new encryption key is implemented but "
to
"after the database is encrypted with the new encryption key but "
2)
Can we replaces the following two sentence"
"
To encrypt a database with a new key:
Choose the type of key that you want to use to encrypt the database:
"
With
"
To encrypt a database with a new encryption key, one need to specify the
new boot password or the new external encryption key depending on whether
the database is currently encrypted using a boot password or
the external encryption key.
"
FYI (NOT FOR DOCUMENTATION) : User does not have choice,
derby does not support switching between external encryption key
and the boot password.
3)
Last two points/links seems to be duplicates of the previous two links.
I think we should remove them.
"
Encrypting databases with a new boot password
You can apply a new boot password to a Derby database by specifying the newBootPassword attribute on the connection URL when you boot the database.
Encrypting databases with a new external key
You can apply a new external encryption key to a Derby database by specifying the newEncryptionKey attribute on the connection URL when you boot the database.
"
4)
In the following sentence "external database" is incorrect,
it should be "external encryption key"
"To encrypt the database with a new external database, use the newEncryptionKey attribute. "
should be :
To encrypt the database with a new external encryption key, use the newEncryptionKey attribute.
tdevcsecureunencrypteddb.html(Encrypting an existing unencrypted database):
---------------------------------------------------------------------------
In this section, I think it would be better to say external encryption key , instead
of just "encryption key".
1)
In the following sentences, "encryption key" should be changed to "external
encryption key".
1) you can specify whether the database should be encrypted using a boot
password or an encryption key
2) you might not be able to boot the database without the boot password or
encryption key.
3) you should try to boot the database with the boot password or the encryption
key
Note : PLEASE DO NOT CHANGE THE ATTRIBUTE NAME , it is still encryptionKey ; for
historical reasons.
2) In following sentence it would be easier to read:
"after the database is encrypted " instead of "after the encryption is implemented"
If the interruption occurs immediately after the encryption is implemented but
to
If the interruption occurs immediately after the database is encrypted but
tdevdvlp14496.html ( Encrypting a database when you create it):
----------------------------------------------------------------
In this section, the is is no information about external encryption key.
I think the following sentence should be changed to reflect that:
"To do this, you use the dataEncryption=true attribute to turn on encryption
and the bootPassword=key attribute to specify a key for the encryption."
to
"To do this, you use the dataEncryption=true attribute to turn on encryption
and the bootPassword attribute or the encryptionKey attribute to specify
a encryption key for the encryption."
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12430374 ]
Laura Stewart commented on DERBY-1636:
--------------------------------------
The patches for the Ref Manual and Dev Guide are now ready for review (again :-)
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide3.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_devguide_html3.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Suresh Thalamati (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429839 ]
Suresh Thalamati commented on DERBY-1636:
-----------------------------------------
Thanks for explaining how the tasks are organized , Laura. I think what is needed is a new entry in the topics group ( Encrypting an encrypted database with a new key ) and have sub-topics under that
Encrypting databases with a new boot password amd Encrypting databases with a new external key.
some thing like :
Encrypting an encrypted database with a new key
() Encrypting databases with a new boot password
() Encrypting databases with a new external key
Thanks
-suresh
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (DERBY-1636) document encryption of an
un-encrypted database and re-encryption with new password/key.
Posted by "Laura Stewart (JIRA)" <de...@db.apache.org>.
[ http://issues.apache.org/jira/browse/DERBY-1636?page=comments#action_12429799 ]
Laura Stewart commented on DERBY-1636:
--------------------------------------
Suresh and Sunitha -
I ran into a problem implementing your suggestion for ordering and namging the files.
The cdevcsecure97760.html file is what is commonly referred to as a supertask. It simply introduces a group of topics, which is why you see all the links. The structure is dictated by a file called the ditamap, which tracks the structure of the book. Unfortunately there are 2 problems with your request:
1) The supertask only shows the links to the tasks immediately below it. The file can't show subtasks such as "Encrypting databases with a new boot password" and "Encrypting databases with a new external key"
2) The topic tdevcsecureunencrypteddb.html "Encrypting an existing database" is about encrypting an existing unencrypted database. But you want to put topics underneath it that discuss re-encrypting a database with an external key or password.
Or am I missing something?
The topics are currently in this order:
Encrypting databases on disk
Requirements for Derby encryption
Working with encryption
Encrypting databases on creation
Encrypting an existing unencrypted database
Creating the boot password
Specifying an alternate encryption provider
Specifying an alternate encryption algorithm
Booting an encrypted database
Changing the boot password
Encrypting databases with a new boot password
Encrypting databases with a new external key
I will attach a toc for the dev guide that you can put in the same directory as the unzipped html files so that you can see the flow of the information better.
> document encryption of an un-encrypted database and re-encryption with new password/key.
> ------------------------------------------------------------------------------------------
>
> Key: DERBY-1636
> URL: http://issues.apache.org/jira/browse/DERBY-1636
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.2.1.0
> Reporter: Suresh Thalamati
> Assigned To: Laura Stewart
> Fix For: 10.2.1.0
>
> Attachments: derby1636_devguide.diff, derby1636_devguide2.diff, derby1636_devguide_html.zip, derby1636_devguide_html2.zip, derby1636_ref.diff, derby1636_ref2.diff, derby1636_ref_html.zip, derby1636_ref_html2.zip, reencrypt_devgudechanges.txt, reencryptspec_1.html, toc.html
>
>
> document encryption of an un-encrypted database and re-encryption with new password/key.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira