| Subject | Re: [IBDI] "DATABASE MUST BE ENCRYPTED" |
|---|---|
| Author | Ann W. Harrison |
| Post date | 2002-06-18T16:16Z |
Re: encryption
I understand that most Firebird/InterBase applications don't
require encryption. Encryption could be added in one of
several ways:
On the wire - encrypt packets transferred between the
client and server.
Database - encrypt pages before writing them to disk. This
could be done cheaply in a way that would keep a casual
thief from using a different isc4.gdb to read a stolen
database file.
Data - all data or per table. Leave the structure of the
database unencrypted for performance and reliability and
encrypt only sensitive data. This would allow for a more
secure encryption (computationally expensive) since less
material would be encrypted.
Someone has asked for the database header page to be securely
encrypted. Why? The information there, though of value to
the server, can be reproduced easily by someone who understands
the database structure.
Regards,
Ann
I understand that most Firebird/InterBase applications don't
require encryption. Encryption could be added in one of
several ways:
On the wire - encrypt packets transferred between the
client and server.
Database - encrypt pages before writing them to disk. This
could be done cheaply in a way that would keep a casual
thief from using a different isc4.gdb to read a stolen
database file.
Data - all data or per table. Leave the structure of the
database unencrypted for performance and reliability and
encrypt only sensitive data. This would allow for a more
secure encryption (computationally expensive) since less
material would be encrypted.
Someone has asked for the database header page to be securely
encrypted. Why? The information there, though of value to
the server, can be reproduced easily by someone who understands
the database structure.
Regards,
Ann