20.11.2015 9:53, Alex Peshkoff wrote: > Yes, and as the result key is passed from holder to crypt plugin via > open source code. As it was reasonably suggested by Vlad our code should > better never touch keys at all.
That may sound good, but in reality cannot gain any additional security. Besides, the information was already passed via remote module. > I've explained in devel why client side key holder, though looking nice > at first look, is bad thing. Yes, I still have that letter in mail box and can quote: "key, distributed over a lot of boxes will stop to be secret very soon". But client-side key holder is a possibility, not requirement. Every plugin writer and user can choose a scheme that he wants. Imagine a server that require for start working with database a connection from secured laptop of security officer. This officer himself has no rights in database, but is the only source of key. -- WBR, SD. ------------------------------------------------------------------------------ Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
