| Subject | Re: [ib-support] Re: DB Security |
|---|---|
| Author | Paul Vinkenoog |
| Post date | 2003-05-23T13:27:20Z |
Hi Paolo,
maybe a couple of others and you don't mind to share the key - the
simplest and fastest is single-key encryption. I can't recommend any
program here because myself I only use single-key encryption on the
procedure level, i.e. _within_ some of my programs, to encrypt data
before I put them in the database.
You might find some ideas by doing a web search, and browsing
newsgroups that have "crypt" in their name.
If you want the backup to be restorable by different people (including
you) but you don't want them all to use the same key, public-key
encryption comes into view. This is very flexible and has a lot of
possibilities, but it is slower (although not very much), needs far
bigger keys and takes more time to setup and manage. One advantage is
that you can e.g. send someone an encrypted .gbk over a public
channel, and that person can decrypt it with HIS key without him
knowing YOUR key. The program I use for this (although I seldom need
it) is PGP. You can find information and downloads for many platforms
at http://www.pgpi.org
Greetings,
Paul Vinkenoog
> If You mean to encrypt the whole gbk have any suggestion for a goodIf you're the only one who should be able to decrypt the backup - or
> encryption program?
maybe a couple of others and you don't mind to share the key - the
simplest and fastest is single-key encryption. I can't recommend any
program here because myself I only use single-key encryption on the
procedure level, i.e. _within_ some of my programs, to encrypt data
before I put them in the database.
You might find some ideas by doing a web search, and browsing
newsgroups that have "crypt" in their name.
If you want the backup to be restorable by different people (including
you) but you don't want them all to use the same key, public-key
encryption comes into view. This is very flexible and has a lot of
possibilities, but it is slower (although not very much), needs far
bigger keys and takes more time to setup and manage. One advantage is
that you can e.g. send someone an encrypted .gbk over a public
channel, and that person can decrypt it with HIS key without him
knowing YOUR key. The program I use for this (although I seldom need
it) is PGP. You can find information and downloads for many platforms
at http://www.pgpi.org
Greetings,
Paul Vinkenoog