| Subject | Re: [Firebird-Architect] Encryption for embedded server |
|---|---|
| Author | Jim Starkey |
| Post date | 2004-09-29T13:58:08Z |
Jonathan Neve wrote:
This is why I've been arguing that we need an end-to-end security
architecture before we start messing around with details.
>But I think encryption could be very useful. Actually, now I come toAh, but sending the decryption key in clear compromises the encryption.
>think of it, this could even be used for an ordinary server
>configuration (not embedded). The best thing, IMO, would be to specify
>the key as a DB connection parameter. That way, only applications
>knowing this key would be able to connect to this database. Furthermore,
>the DB file could freely be exchanged from one machine to another, it
>would still remain usable only be an application knowing the correct key...
>
>
>
This is why I've been arguing that we need an end-to-end security
architecture before we start messing around with details.