Alle 09:32, luned́ 8 marzo 2004, Peter Galbavy ha scritto:
> Perhaps, given the potential commercial necessities of this for larger
> organisations, find out what Oracle and IBM propose doing or have
> implemented ?

I do not know of IBM.

Oracle has a system similar to pgcrypto but more sophisticated. I do not know 
if it can use encrypted indexes, encrypted dates and encrypted times (it is 
likely but I did not tried, yet). It stores its "global encryption password" 
into a system table in encrypted form. Only authenticated users can decrypt 
data. 

Something like that can be done with PostgreSQL, as well. The problem is that 
I have to store somewhere a password in clear text (either the password used 
to encrypt/decrypt data or the password used to decrypt this password). 
Oracle has a built-in feature for encrypting/decrypting this password's 
password.

> For strict comformance, you really should consult a local legal
> professional for their opinion, and be prepared to pay for that protection.

We are doing it. Unfortunately, our lawyer still have to discuss technical 
problems with a technician (that is: me).

BTW: It looks like I'm the only one here facing this problem. That's 
surprising, given the number of countries that have a law like the italian 
one and the wide diffusion of PostgreSQL.

See you.
-----------------------------------------
Alessandro Bottoni and Silvana Di Martino
[EMAIL PROTECTED]
[EMAIL PROTECTED]

---------------------------(end of broadcast)---------------------------
TIP 7: don't forget to increase your free space map settings

Reply via email to