Introduction
The new features manual officially itemises 17 additions. Listed below are some of my favourites
The ability to flush the passwordfile metadata cahce
Using the new alter system command you can now flush the passwordfile metadata caches. For example,
SQL> ALTER SYSTEM FLUSH PASSWORDFILE_METADATA_CACHE;
This can be used if the password file changes name or location.
Future logons will use the new password file. Note: All nodes in a RAC cluster will be affected by this command, but it does take time to propagate.
Use the following view to see what file is being used V$PASSWORDFILE_INFO
More Algorithms for Offline Tablespace Encryption
The following algorithms have been added to the list for offline tablespace encryption. Note that AES128 is already available.
- AES192
- AES256
- ARIA
- GOST
- 3DES
A new pdb_guid field written to the SYSLOG
It is now possible to identify the PDB iin the audit record of the syslog. The new field pdb_guid will be written for the record.
You can set the following initialization parameter to configure audit record writes to the UNIX syslog.
- UNIFIED_AUDIT_SYSTEMLOG
Signature Based Security for LOB Locators
Signature based LOB locators strengthens the security of LOBs and CLOBS
To enable encryption of a LOB signature use the following statement
- SQL> ALTER DATABASE DICTIONARY ENCRYPT CREDENTIALS
To perform this, you will need an open Transparent Data Encryption keystore.
Published 10th May 2023
