| Subject | Re: [Firebird-Architect] Re: database encryption |
|---|---|
| Author | Jim Starkey |
| Post date | 2010-11-08T15:15:59Z |
On 11/8/2010 6:38 AM, Daniel Rail wrote:
plausible line encryption (out of SSL), you need the following:
1. Creation or maintenance of a public key pair on the server for key
transmittal.
2. A protocol extension for the server to pass its public key to the
client
3. A protocol extension for the client to pass an encrypted session
key to the server
4. Hooks in the remote interface / server code for encryption
5. Hooks in PIO for page encryption
The crypto algorithms are the least of the problem.
--
Jim Starkey
Founder, NimbusDB, Inc.
978 526-1376
[Non-text portions of this message have been removed]
> I suggest here not to go into details of crypt implementation (whatI'm afraid that just adding interfaces isn't nearly enough. To do even
>> algorithm, what library, etc.). Instead interfaces needed to support
>> line& file encryption should be defined.
> It's all that I'm asking for, is interfaces to be able to define our
> own line and file encryption.
>
plausible line encryption (out of SSL), you need the following:
1. Creation or maintenance of a public key pair on the server for key
transmittal.
2. A protocol extension for the server to pass its public key to the
client
3. A protocol extension for the client to pass an encrypted session
key to the server
4. Hooks in the remote interface / server code for encryption
5. Hooks in PIO for page encryption
The crypto algorithms are the least of the problem.
--
Jim Starkey
Founder, NimbusDB, Inc.
978 526-1376
[Non-text portions of this message have been removed]