http://www.perlmonks.org?node_id=677614


in reply to Re: Cryptology in the database
in thread Cryptology in the database

there are two possible cases.
I don't find it all black or white. Consider an application server with a symmetric key stored in plain text on disk, connected to a database server which performs symmetric encryption on the data. Although the protection against an online attacker having filesystem access on the application server is very poor, it will still protect well against offline attacks on lost or stolen database disks.
--
Andreas