> Hey, there's a great idea here. Anybody who want to ship
> encrypted data ships a security plug module (shared library)
> containing the decrypt codes for that data. Toss it into the
> config file somewhere in the daisy chain. When it sees what
> it protects, it decided whether this is legit or not, and if
> so, decrypts. The plugin isn't part of Firebird so it
> doesn't have to be published. It, I suppose, look for some
> sort of licence file or certificate about the data.
>
> Somebody should take this idea and flesh it out.

I'm a HUGE fan of plug-ins and have followed what you've written so far with
a great deal of interest, I'm not however a C/C++ programmer so am unable to
help here (as much as I would like to). But, it would be nice to see a
security model that was flexible enough to handle this type of scenario.

OOI is there a spec available for the proposed security model?

Rgds

Si Carter
TECT Software Ltd
http://www.tectsoft.net/