Re: Encrypted Fields

From: Mike Kienenberger (mkienen..mail.com)
Date: Tue Feb 10 2009 - 13:34:44 EST

Next message: Michael Gentry: "Re: Encrypted Fields"

Previous message: Michael Shea: "Re: Cayenne + master/slave mysql database replication"
In reply to: Michael Gentry: "Re: Encrypted Fields"
Next in thread: Michael Gentry: "Re: Encrypted Fields"
Next in thread: Michael Gentry: "Re: Encrypted Fields"
Reply: Michael Gentry: "Re: Encrypted Fields"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It's been pointed out to me that you don't need a separate version column.
More than likely you'll be encoding the encrypted value, and you can
prefix that value with the version.

For example, ':' is not a valid Base64 character, so the encryption
string could just be prefixed with the key version if you encode in
Base64.

On Tue, Feb 10, 2009 at 8:35 AM, Michael Gentry <mgentr..asslight.net> wrote:
> I updated the document. I tried to simplify the key protection stuff
> (hopefully it makes a bit more sense) and added an example at the
> bottom on how you might do a search and fetch using encrypted field
> values.
>
> http://people.apache.org/~mgentry/Security_Manifesto.pdf
>
>
> mrg
>

Next message: Michael Gentry: "Re: Encrypted Fields"
Previous message: Michael Shea: "Re: Cayenne + master/slave mysql database replication"
In reply to: Michael Gentry: "Re: Encrypted Fields"
Next in thread: Michael Gentry: "Re: Encrypted Fields"
Next in thread: Michael Gentry: "Re: Encrypted Fields"
Reply: Michael Gentry: "Re: Encrypted Fields"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2.0.0 : Tue Feb 10 2009 - 13:35:34 EST