Home > mailing lists

Re: Looking for advice on database encryption - Mailing list pgsql-general

From	John R Pierce
Subject	Re: Looking for advice on database encryption
Date	April 17, 2009 00:24:49
Msg-id	49E7CC2F.3050305@hogranch.com Whole thread Raw
In response to	Looking for advice on database encryption (Bill Moran <wmoran@potentialtech.com>)
Responses	Re: Looking for advice on database encryption
List	pgsql-general

Tree view

Eric Soroos wrote:
>> an index on the encrypted SSN field would do this just fine.     if
>> authorized person needs to find the record with a specific SSN, they
>> encrypt that SSN and then look up the ciphertext in the database...
>> done.
>>
>
> This will only work for e(lectronic?) code book ciphers, and not
> chained block ciphers, since the initialization vector will randomize
> the output of the encryption so that E(foo) != E(foo) just to prevent
> this sort of attack.

can those sorts of chained block ciphers decode blocks in a different
order than they were originally encoded?    for this sort of
application, wouldn't each field or record pretty much have to be
encrypted discretely so that they can be decrypted in any order, or any
single record be decrypted on its own?

pgsql-general by date:

From: "Francisco Figueiredo Jr."
Date: 16 April 2009, 23:50:35
Subject: Re: need information

From: Bill Moran
Date: 17 April 2009, 00:29:10
Subject: Re: Looking for advice on database encryption

Re: Looking for advice on database encryption - Mailing list pgsql-general

Previous

Next