> Our database design is allowing "on the fly" encryption - especially in the > case of unsecured dial in acces all data will be encrypted on the client > side, - and then? > > Is storing the information unencrypted the only way to go? (Database sits of > cause on an encrypted file system anyway). Who solved the index-encryption > enigma already? A solution in use elsewhere is to rely on an encrypted file system: it also solves the problem of data stored in cache or in the swap file/pagefile, and it allows for a nice, neat separation of functionality :-). Given that a file system is just another database, I would not be surprised by the integration of a web server with a database either ;-). Sincerely, -Yves Paindaveine
