ASA Database Administration Guide
Client/Server Communications
Using the TCP/IP protocol
By default, communication packets are not encrypted; this poses a potential security risk. For greater security, you can force client/server network communications over the TCP/IP port to be encrypted using ECC_TLS (formerly Certicom) or RSA_TLS encryption technology. TCP/IP is the only network protocol that supports this strong encryption.
For information about forcing encryption of client/server communications from the server, see -ec server option.
For information about forcing encryption of client/server communications from a particular client, see Encryption connection parameter [ENC].