-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Francisc Romano wrote: > Is it possible to encript SQLite databases so that they cannot be referenced > outside the program that uses it?
The SQLite database file has to be accessible to the program using SQLite so no matter what you do, a malicious user on the same machine will be able access the contents should they try hard enough. Using the SQLite encryption extension (see Simon's post) will make that harder for the casual bad guy. As a simple example the malicious user can run your program under a debugger. You can set local permissions to try and prevent that but then you are relying on the local operating system to never have privilege elevation bugs (unlikely) or never to be tricked by virtualization (again unlikely). If you want your data to be truly secured then you have to store it separately under your own control and have clients request pieces as needed. Of course there is still nothing preventing them from republishing those pieces. Roger -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkraLJ4ACgkQmOOfHg372QQBTwCeNw30EP5DReFqgNfzN7duE/ZG IP4AmwQ4AuP3lJOQNbwBpW6Ah67Mo3Kl =yO+/ -----END PGP SIGNATURE----- _______________________________________________ sqlite-users mailing list sqlite-users@sqlite.org http://sqlite.org:8080/cgi-bin/mailman/listinfo/sqlite-users
