On Thu, 7 Jun 2018 14:49:35 +0200 Dimitry Sibiryakov <s...@ibphoenix.com> wrote:
> > Don't forget about backup file encryption which is currently under > development by Alex. > This is one of the reasons to ask for official support - so that it can be kept in mind when developing new features. > AES is considered to be invulnerable to "known plain text" attacks > and (because of well known DB page layer) even CBC has no advantages > over ECB. > The main advantage of using XTS would be that the ciphertext would be bound to its location which eliminates repeating ciphertext which otherwise helps for identifying patterns within the database file. Another advantage is that if a block is copied from one place to another it will decrypt into something random rather than meaningful plain text. A better alternative would be an authenticated encryption scheme but this would need ODS changes as far as I can tell. ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
