Hi, Original from: [EMAIL PROTECTED]:
> Excuse me, I don't think this is right. > > There are plenty reasons to do encryption on DB base level: > - - secureing information, to be sure, only the authorized [... snipp: encryption ...] > Datasecurity is important and > enforced by Law: Lawfirms, Medical, and much more. well, most of the "features" you suggestet would make sense, but: there is already a lot of software that covers most of the suggestions, including encrypted connections and encrypted filesystems. Secureing a DB-Server with external tools has _very_ importand advantages: - If a encryption package is directly included into the SAP DB, it would have to be maintained aditionaly. Importand bugfixes would need extra time until they found their way into the SAP DB. In the meantime, your server could have already been cracked up. - standard encryption tools has been analyzed for many times (hopefully ;-)). Using these tools after reading their manulas will make you sleep _much_ better. - The SAP DB is already lage enough. Adding "security features" to the standard installation would blow up the downloads even for these ones that do not need the encryption. - ... Some people may say now, that is would be easier to integrate encryption directly. But this won't bring you "real security". Nobody said that securing a system is a easy job (if somebody said so, he/she is lying). > Think about ! Well, this is what we are doing ;-)) Falko -- Falko Flessner SAP Labs Berlin SAP AG visit http://www.sapdb.org _______________________________________________ sapdb.general mailing list [EMAIL PROTECTED] http://listserv.sap.com/mailman/listinfo/sapdb.general
