| Subject | Re: [Firebird-Architect] Re: database encryption |
|---|---|
| Author | Daniel Rail |
| Post date | 2010-11-08T11:38:04Z |
Hi,
At November-07-10, 8:34 AM, Alex Peshkoff wrote:
own line and file encryption.
--
Best regards,
Daniel Rail
Senior Software Engineer
ACCRA Solutions Inc. (www.accra.ca)
ACCRA Med Software Inc. (www.filopto.com)
At November-07-10, 8:34 AM, Alex Peshkoff wrote:
> On 11/07/10 05:30, Jim Starkey wrote:Glad to hear.
>> This is absurd. Line and database file encryption is a perfectly
>> reasonable request and well within the state of the art.
> Moreover, they (specially line encryption) are in our roadmap for FB3.
>> Throwing aIt's all that I'm asking for, is interfaces to be able to define our
>> bunch of bogus objections at it will not make it go away. Yes, on one
>> hand, a provably secure solution assuming that DNS and the OS have been
>> successfully hijacked is not feasible, but that isn't necessary.
>>
>> I suggest there are two basic requirements:
>>
>> 1. Defensible line security to level of AES, including intelligent
>> use of PKES for key exchange
>> 2. File (page) level encryption to defeat inquiring eyes.
> I suggest here not to go into details of crypt implementation (what
> algorithm, what library, etc.). Instead interfaces needed to support
> line & file encryption should be defined.
own line and file encryption.
--
Best regards,
Daniel Rail
Senior Software Engineer
ACCRA Solutions Inc. (www.accra.ca)
ACCRA Med Software Inc. (www.filopto.com)