Take the following steps to configure SSL encryption.
1. Choose the type of encryption for your application:
If you want the driver to encrypt all data, including the login request, set the EncryptionMethod property to SSL or requestSSL.
If you want the driver to encrypt only the login request, set the EncryptionMethod property to loginSSL.
2. Use the CryptoProtocolVersion property to specify acceptable cryptographic protocol versions (for example, TLSv1.2) supported by your server. (Only applies when the EncryptionMethod property is set to SSL.)
3. Specify the location and password of the truststore file used for SSL server authentication. Either set the TrustStore and TrustStore properties or their corresponding Java system properties (javax.net.ssl.trustStore and javax.net.ssl.trustStorePassword, respectively).
4. To validate certificates sent by the database server, set the ValidateServerCertificate property to true.
5. Optionally, set the HostNameInCertificate property to a host name to be used to validate the certificate. The HostNameInCertificate property provides additional security against man-in-the-middle (MITM) attacks by ensuring that the server the driver is connecting to is the server that was requested.
If you want the driver to encrypt all data, including the login request, set the EncryptionMethod property to SSL or requestSSL.