| Subject | Re: [firebird-support] Encryption |
|---|---|
| Author | Ann W. Harrison |
| Post date | 2009-06-19T17:12:16Z |
Anderson Farias wrote:
about security. I haven't looked at the key management in the
Oracle implementation, but it's generally called "obfuscation"
which suggests that it's purpose is to deter random snooping, not
block a determined hacker. Since file system encryption does
provide a secure solution, it's a better solution - and possible
to implement without Oracle's army of developers.
Cheers,
Ann
>Implementing encryption is not hard - as long as you're not fussy
> Anyway, some people here *seem*s to advocate it's not possible to have data
> encription on the db engine -- I wonder how does Oracle has that? And
> probably other RDBMs. So... One thing is to say it's hard to implement (the
> right way) and it's not FB priority... another one very differente it's to
> say it can't be done (when others have already done!)
>
about security. I haven't looked at the key management in the
Oracle implementation, but it's generally called "obfuscation"
which suggests that it's purpose is to deter random snooping, not
block a determined hacker. Since file system encryption does
provide a secure solution, it's a better solution - and possible
to implement without Oracle's army of developers.
Cheers,
Ann