P is for Practical | |
PerlMonks |
Re^2: Cryptology in the databaseby andreas1234567 (Vicar) |
on Mar 31, 2008 at 19:04 UTC ( [id://677614]=note: print w/replies, xml ) | Need Help?? |
there are two possible cases.I don't find it all black or white. Consider an application server with a symmetric key stored in plain text on disk, connected to a database server which performs symmetric encryption on the data. Although the protection against an online attacker having filesystem access on the application server is very poor, it will still protect well against offline attacks on lost or stolen database disks.
-- Andreas
In Section
Seekers of Perl Wisdom
|
|