| Subject | Re: [firebird-support] Re: Undocumented internal encrypt/decrypt in FB |
|---|---|
| Author | Alexandre Benson Smith |
| Post date | 2007-07-19T06:10:12Z |
PenWin wrote:
You are not taking the point
Not matter what algorithm you use
If your key is not *safe* (big emphasys on safe) you are lost.
see you !
--
Alexandre Benson Smith
Development
THOR Software e Comercial Ltda
Santo Andre - Sao Paulo - Brazil
www.thorsoftware.com.br
>> If you want any chance of security by obscurity you mustPepak,
>> do it outside the open source - the Firebird developers
>> cannot do it for you.
>>
>
> The obvious problem is that I _don't_ want security by obscurity - I want
> security by tried and tested algorithms such as AES. You seem to confuse
> "obscurity" (as in "I want to hide how it is done") with "secrecy" (I'll
> happily tell you how it is done because you won't be able to do anything
> unless you discover my secret key"). The distinction between these two is
> the reason why e.g. TrueCrypt works.
>
> Pepak
>
>
You are not taking the point
Not matter what algorithm you use
If your key is not *safe* (big emphasys on safe) you are lost.
see you !
--
Alexandre Benson Smith
Development
THOR Software e Comercial Ltda
Santo Andre - Sao Paulo - Brazil
www.thorsoftware.com.br