|
|
Posted by Christopher Browne on 12/09/05 06:18
> Is there a way to create and encrypted database file?
There are plenty of ways; they commonly don't actually provide any
meaningful form of security.
> What do people do when data security is important at the file level?
> In other words, you don't want anyone to be able to take the
> database file (or files) and extract data from them.
The only realistic method is to encrypt the data before submitting it
to the database.
Anything else that they try to sell you is snakeoil.
> Ideally, I want a file the is absolutely encrypted on disk and that
> is decrypted for data access. The problem, obviously, is that this
> would be a very costly (cpu time) approach as you couldn't create a
> decrypted image on disk (this would expose the data).
>
> Are all database systems then, non-secure?
If they claim that their database system can manage the cryptography
for you, then yes.
Look for the book _Translucent Databases_ which has examples in
various languages for various databases.
--
let name="cbbrowne" and tld="gmail.com" in name ^ "@" ^ tld;;
http://linuxdatabases.info/info/emacs.html
"Now, suddenly, I _am_ the expanding Russian Frontier" -- Commander
Ivanova
"But with very nice borders..." -- Dr Franklin
Navigation:
[Reply to this message]
|