Skip to Content

Archived discussions are read-only. Learn more about SAP Q&A

Encryption Key management - Information required


I have a question related to encryption key management in SQLA. Suppose I have 100 sites where encrypted SQLA DB is running. All these encrypted DB is created at central location i.e. datacenter and are transferred/pushed to remote locations.

Q1. Where are the keys held ? How are they managed ? Are there any SAP tools available to manage encryption keys?

Q2. How do I access the Decryption securely ?

Q3. How do we protect the data so that in the wrong hands the 256bit encryption is unbreakable and more so, how do we ensure ‘wrong hands’ cannot access decryption keys?

Warm regards


+91 98450 91970

Former Member
Former Member replied

There may need to be further context shared for this inquiry.

As far as key management, this is typically done by the vendor of the software. For physical database encryption, the key is chosen at database creation time, and is further supplied to the database server during use with the -ek or -ep parameters. If the key is lost, the database can no longer be used.

Database encryption methods

Secure data access from a client can be done by requiring TLS from every connection.

Transport layer security

There is also a separately licensed component for FIPS-certified encryption.

FIPS-certified encryption technology

Hope this helps,


0 View this answer in context
Not what you were looking for? View more on this topic or Ask a question