An authentication method that stores authentication data, such as certificates and private keys, in an Oracle Wallet. When the client initiates a Oracle Net connection to the server, SSL performs a handshake between the two using the private key and certificate. During the handshake the following processes occur:
The client and server negotiate a cipher suite-a set of authentication, encryption, and data integrity types-to apply to the messages they exchange.
Depending on how you have configured SSL, the client can send the user's certificate to the Oracle database server. The certificate ensures that the user's information is correct and that the public key actually belongs to that user. The server checks the user's certificate to verify that it bears the certificate authority's signature.
Again, depending on your configuration, the database server can then send its own certificate to the client in a message encrypted with the client's public key. The client decrypts this message by using its own private key, then verifies that the server's certificate bears the certificate authority's signature.
Oracle Net Services Configuration Overview
Copyright © 1996, 2009, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its affiliates.
Other names may be trademarks of their respective owners.