On 11/18/2015 03:36 PM, Vlad Khorsun wrote: > 18.11.2015 14:04, Dimitry Sibiryakov wrote: >> 18.11.2015 13:00, Vlad Khorsun wrote: >>> As you really need way to identify encryption key (not a database >>> itself) i >>> suggest you to ask for key name (key ID) stored at header page. And it >>> already >>> was discussed recently. >> This solution has one problem: where this key ID must come from? When? >> How? > Key name could be generated by crypto-plugin (or key holder ?) when > database is about to be > encrypted.
Not sure that delegating this to plugins is good idea. This just cause repeat of absolutely same activity in different plugins. And next - sometimes it can be handy to use predefined key with known name, we should be able to provide this name from user. > Engine then must store it at header page. When attachment to the encrypted db > is > established engine extract key name and pass it to the crypto-plugin (or key > holder ?) May be better both? > before > encryption\decryption started. > ------------------------------------------------------------------------------ Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
