Home > mailing lists

Re: [PHP] Secure DB Systems - How to - Mailing list pgsql-sql

From	Bruno Wolff III
Subject	Re: [PHP] Secure DB Systems - How to
Date	July 13, 2004 12:31:07
Msg-id	20040713123817.GB3710@wolff.to Whole thread Raw
In response to	Re: [PHP] Secure DB Systems - How to (Daniel Struck <struck.d@retrovirology.lu>)
Responses	Re: [PHP] Secure DB Systems - How to
List	pgsql-sql

Tree view

On Tue, Jul 13, 2004 at 11:35:57 +0200,
  Daniel Struck <struck.d@retrovirology.lu> wrote:
> > Keeping the system administrator from seeing the data while making it
> > searchable is difficult. To do this you need to encrypt the data on
> > the client side using a key the client has (and this key has to be
> > protected from loss) and the only searches you can do are equality
> > searches using a hash or encrypted value.
>
> You can also perform regex searches.

If you decrypt the data on the database, the sysadmin can see it.
If you are willing to take that chance (e.g. if you primary concern is
some third party getting a snapshot of the DB), then you can do lots of
things.

pgsql-sql by date:

From: Daniel Struck
Date: 13 July 2004, 09:34:58
Subject: Re: [PHP] Secure DB Systems - How to

From: Daniel Struck
Date: 13 July 2004, 13:17:54
Subject: Re: [PHP] Secure DB Systems - How to

Re: [PHP] Secure DB Systems - How to - Mailing list pgsql-sql

Previous

Next