| Subject | Re: [Firebird-Architect] database encryption |
|---|---|
| Author | Adriano dos Santos Fernandes |
| Post date | 2010-11-04T15:20:25Z |
On 04/11/2010 11:25, Sijun Kang wrote:
accessible only to it.
so anyone could see all the data and catches what they wants anyway.
I'm not against encryption, I just want to show it requires a effort not
justifiable, as currently you can use encrypted drives without any more
problems.
Adriano
> Let me elaborate a bit more - when EFS is mounted as a drive/directory, allPut Firebird to run as a different user and makes the database file
> sorts of programs might "try to help you find information" (such as google
> desktop search, microsoft search companion, etc, etc). Although you
> consider them "good programs", but they definite serve as a information
> leaking hole (for one thing - who knows where they store their index data or
> even transfer your data?).
accessible only to it.
> Also worth mentioning is the operating system,And there is the applications leaved opened and logged in the database,
> although we defintely consider it our friend (when free of virus/malware),
> but it caches information to speed up IO access and thus also contributes as
> another leaking channel of any sensitive information stored in EFS. Anyway,
> this list can go on and on ...
so anyone could see all the data and catches what they wants anyway.
I'm not against encryption, I just want to show it requires a effort not
justifiable, as currently you can use encrypted drives without any more
problems.
Adriano