-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Am Montag, 10. Februar 2003 17:29 schrieb Gloss Mathias:
> Aloha,
>
> > Unterst�tzt die Datenbank 64 Bit Verschl�sselung??
> (-> Supports the database 64bit encryption??)
>
> Why do you want to encrypt your data? This
> doesn't make sense in a RDBMS ....
Excuse me, I don't think this is right.
There are plenty reasons to do encryption on DB base level:
- - secureing information, to be sure, only the authorized
user may retrieve it without giving up all other features.
- - secureing the connection to the database via TLS/SSL
- - creating ACL listings for vserver, (Good, Bad, Attack detections)
- - secureing the data also in 'datasaves'. Now the data is in
"Clear Text" in the dumpfiles.
> With sapdb, you can set authorisations, so
> nobody else can read your data without the
> right user and password.
That's only half true and very basic authorizations.
I'd suggest:
1. adding 'encryption' option to the connect string:
connect .... encrypted by key, passphrase
2. This would enable to:
create table secret_data
(
id int default serial,
name varchar(60) name encrypted trusted by 'user|resource|usergroup',
...
)
using encrypted data in a table would only possible, if
it is a secured and encrypted session open. The usage would be
transparent. Surely, working on encrypted Data is much slower, than
unencrypted, but this desision is in the duty of the Datamodell designers.
To realize we may use the 'gpg' Sources as libraries. GPG is GPL/LGPL
as SapDB.
At this stage SapDB would have one BIG Killer Feature for working on Places,
where we have to prove the best Datasecurity: WebShops, Bookkeeping Apps,
CRM Apps, fiscal Apps, Applications in sections where Datasecurity is important and
enforced by Law: Lawfirms, Medical, and much more.
Think about !
mfG
J�rgen Sauer
- --
J�rgen Sauer - AutomatiX GmbH, +49-4209-4699, [EMAIL PROTECTED] **
** Das Linux Systemhaus - Service - Support - Server - L�sungen **
** http://www.automatix.de http://www.kranautomatisierung.de **
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+SP+DW7UKI9EqarERAi/sAKDczwYwugcapfjGG14/lN2H96cqqgCfdZMH
zYc6QmBgIcGdzkmQIRIUyY0=
=kt9A
-----END PGP SIGNATURE-----
_______________________________________________
sapdb.general mailing list
[EMAIL PROTECTED]
http://listserv.sap.com/mailman/listinfo/sapdb.general
