Python Connector for InterBase

OTW Encryption - Python Connector for InterBase

Encrypting network using Over-the-Wire (OTW)

Over-the-Wire (OTW) encryption is a security feature in InterBase that encrypts data transmitted between the client and server. This ensures that any data exchanged over the network is protected from eavesdropping and tampering. OTW encryption uses industry-standard encryption algorithms to provide a robust layer of security for data in transit.

To enable OTW encryption, database administrators need to configure the InterBase server to use SSL/TLS. This involves setting up SSL/TLS certificates and configuring the server to accept encrypted connections. On the client side, you need to specify the client and CA certificate files and enable encryption in the connection parameters. Both the InterBase client and server must have the X.509 files installed to use OTW encryption.

For more information about securing TCP/IP connections with OTW, see Encrypting network communication in the InterBase documentation.

Enable encryption

  1. Import the module. 
    import devart.interbase
  2. Connect to a database using the connect() module method and obtain a connection object. 
    my_connection = devart.interbase.connect(
    Server="your_server",
        Database="your_database",
        UserId="your_username",
        Password="your_password",
        ClientLibrary="your_client_library",
    UseSSL="True",
        SSLServerPublicFile="path_to_ca_cert",
        SSLClientCertFile="path_to_client_cert",
        SSLClientPassPhrase="your_passphrase"
)

OTW parameters

Parameter

Description

UseSSL

Enables OTW encryption.

SSLServerPublicFile

The path to the CA certificate file in the PEM format. You can use either the SSLServerPublicFile parameter or the SSLServerPublicPath parameter.

SSLServerPublicPath

The directory that stores the CA certificate files in the PEM format. Each file in the directory must contain only a single CA certificate and the files must be named by the hash of the subject name and extension of .0. It's recommended that you use the SSLServerPublicFile parameter instead. If you specify both parameters, SSLServerPublicFile will be used.

SSLClientCertFile

The path to the client certificate file in the PEM format. This file contains the client certificate and private key.

SSLClientPassPhrase

The client private key passphrase. You can use either the SSLClientPassPhrase parameter or the SSLClientPassPhraseFile parameter.

SSLClientPassPhraseFile

The path to a text file that contains the client private key passphrase. You can use either the SSLClientPassPhraseFile parameter or the SSLClientPassPhrase parameter.
© 2022-2026 Devart. All Rights Reserved. Request Support Python Connectors Forum Provide Feedback