> I remember seeing somewhere a suggestion that Firebird could already
> support page-level encryption by two user-defined functions to encode
> the page before writing it and decode it after reading. I guess this is
> the way to go without losing any engine functionality. Please if anyone
> has better memories or actual knowledge, comment on this.

I see no difference here to the disk encruption

>
> A way to encrypt the database would be a very nice feature for
> firebird, especially in the embedded usage case. I'm currently using
> Truecrypt volumes, but I would prefer a native firebird solution, even
> if not that professionally secure. The basic principle seems to be the
> same however - truecrypt encrypts on a block level, without trying to
> understand the file system data, so you could use different
> filesystems, and we need something to encrypt on a page level without
> trying to understand the database structure. At some point I was even
> thinking of using the truecrypt device as a raw device for the
> database, but this is not supported on Windows I think.
>

I'd have to agree with Geoff. I'd rather leave encryption to the
specialists. Use disk encryption. No sooner than putting some kind of
encryption layer into FB, it woud be deemed inadequate or less secure than
required. A lot of work for a team of our size to start getting involved in
this when there are so many *real* and continually updated methods of this
kind of protection available already.
Alan