When you create a new database, the bootPassword=key attribute must be combined with the create=true and dataEncryption=true attributes.
When you configure an existing unencrypted database for encryption, the bootPassword=key attribute must be combined with the dataEncryption=true attribute. For an existing, unencrypted database for which authentication and SQL authorization are both enabled, only the database owner can perform encryption. Please see "Enabling user authentication" and "Setting the SQL standard authorization mode" in the Java DB Developer's Guide for more information.
When you boot an existing encrypted database, no other attributes are necessary.
-- create a new, encrypted database jdbc:derby:newDB;create=true;dataEncryption=true; bootPassword=cseveryPlace -- configure an existing unencrypted database for encryption jdbc:derby:salesdb;dataEncryption=true;bootPassword=cseveryPlace -- boot an existing encrypted database jdbc:derby:encryptedDB;bootPassword=cseveryPlace