| Subject | Re: database encryption |
|---|---|
| Author | ettotev |
| Post date | 2010-11-04T15:19:10Z |
........
I do believe file encryption makes sense especially for the embedded model.
I may be dumb, but it seems to me that a simple encryption plug-in would only need three hooks in the embedded engine - one to receive the username and password entered by the user and based on them to initialize the symmetric encryption key; one to handle the request for page read - read and decrypt; and one for page write - encrypt and write to disk. Am I missing so much here?
Emil
that will encrypt / decrypt pages will only need to know the username / password in order to decrypt the actual key.
> EFS is your thing.I wonder how many of you keep their passwords in an unprotected Excel document or text file stored on an encrypted volume, instead of using a tool like PasswordSafe or KeePass? And do you want to say that the whole concept of these type of utilities is flawed?
>
I do believe file encryption makes sense especially for the embedded model.
I may be dumb, but it seems to me that a simple encryption plug-in would only need three hooks in the embedded engine - one to receive the username and password entered by the user and based on them to initialize the symmetric encryption key; one to handle the request for page read - read and decrypt; and one for page write - encrypt and write to disk. Am I missing so much here?
Emil
that will encrypt / decrypt pages will only need to know the username / password in order to decrypt the actual key.