My Oracle Support Banner

Oracle Database Tablespace Encryption Behavior in Oracle Cloud (Doc ID 2359020.1)

Last updated on NOVEMBER 19, 2021

Applies to:

Gen 1 Exadata Cloud at Customer (Oracle Exadata Database Cloud Machine)
Gen 2 Exadata Cloud at Customer
Oracle Cloud Infrastructure - Exadata Cloud Service
Oracle Cloud Infrastructure - Database Service
Linux x86-64 on Oracle Public Cloud


 The purpose of this document is to describe the behavior of Transparent Data Encryption in an Oracle Cloud environment.

Oracle Database Cloud Services, including Exadata Cloud Service and Cloud@Customer, require TDE Encryption be enabled for all tablespaces by policy.


This document describes how Oracle Database Tablespace Encryption works for the following use cases:

This document is related to Database Releases:,,, 18c and 19c (and beyond)

Applies to Oracle Database Cloud Service (PaaS) including Exadata Cloud Service, Exadata Cloud at Customer.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
 Database releases and
 Database release (with April'17 PSU - 17.3.1 / July 7th) and all future versions.
 Database release (pre-April '17 PSU)
 Summary: Database Releases Encryption in the cloud
 Hybrid DR Deployment Considerations
 Unencrypted On-Premises and Unencrypted Cloud
 Primary: Unencrypted On-Premises | Standby: Encrytped Cloud
 Primary: Encrypted Cloud | Standby: Unencrypted On-Premises
 General Considerations
 Table: On-Premises Unencrypted Primary | Cloud Encrypted Standby
 Table: Cloud Encrypted Primary | On-Premises Unencrypted Standby
 Additional Encryption Notes

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.