| Subject | Re: [Firebird-Architect] database encryption |
|---|---|
| Author | Sijun Kang |
| Post date | 2010-11-03T23:20:12Z |
EFS (I assume that you refers to Encrypted File System, such as the mounted
drive/folder provided by software like TrueCrypt) does privide the security
that I described, but not without penalty though. Once I mount a decrypted
drive, it's data is exposed to other programs as well. Whereas database with
encryption capacity provides more control in this perspective and thus seems
to serve as a better environment to host sensitive data.
Regards,
Sijun Kang
2010/11/3 Dimitry Sibiryakov <sd@...>
drive/folder provided by software like TrueCrypt) does privide the security
that I described, but not without penalty though. Once I mount a decrypted
drive, it's data is exposed to other programs as well. Whereas database with
encryption capacity provides more control in this perspective and thus seems
to serve as a better environment to host sensitive data.
Regards,
Sijun Kang
2010/11/3 Dimitry Sibiryakov <sd@...>
> 03.11.2010 20:43, Sijun Kang wrote:[Non-text portions of this message have been removed]
> > *Nobody can gain access to my data (without bruteforce
> > decryption) in case I lost my laptop in power-off status*.
> > This, I think, is achievable.
> >
> > I do agree with Jim that the "key" here is the "key management". Let's
> dig a
> > little bit more in depth as to how we can achieve above goal along the
> > personal information management scenario -
> >
> > *As long as Firebird only keeps the key in memory when the
> user is
> > logged in, and delete the key (and other cached information related with
> the
> > corresponding encrypted database) from the memory once the user is logged
> > out (or timed out after idling for a certain period of time), it seems to
> me
> > that the encrypted database is safe. *
>
> EFS is your thing.
>
> --
> SY, SD.
>
>
> ------------------------------------
>
> Yahoo! Groups Links
>
>
>
>