Hi DB designers,
I'm thinking of applying url dec/encode + Encryption to data Strings users would send from their Mobile/desktop App to a server...
- I likely would URLdecode any Strings once on the server just before storing in the DB. (usefull ??)
but my main wondering is :
- What is the way to run some "Text search" or "content queries" once data is stored if it remains encrypted ?
- Can one run a query over an encrypted stored string in the DB ?does the search criteria requires the same encryption process to match the content ?
- or does one HAVE to decrypt all content columns that is likely to be searched after by general users ?
So that would mean, encryption is only possible during data transfer...but then can not really be used on any stored data.
(encryption here would be used in case the whole DB is hacked or leaks out somehow...)
So is it protection vs Searchable content ?
Thanks for sharing your way to deal with this.
DB Queries over Encrypted strings ? or how ?
Moderators: FourthWorld, heatherlaine, Klaus, kevinmiller, robinmiller
-
- VIP Livecode Opensource Backer
- Posts: 9857
- Joined: Sat Apr 08, 2006 7:05 am
- Location: Los Angeles
- Contact:
Re: DB Queries over Encrypted strings ? or how ?
SSL should be sufficient. And you can't post an app to the app stores these days that doesn't use SSL.
Richard Gaskin
LiveCode development, training, and consulting services: Fourth World Systems
LiveCode Group on Facebook
LiveCode Group on LinkedIn
LiveCode development, training, and consulting services: Fourth World Systems
LiveCode Group on Facebook
LiveCode Group on LinkedIn
Re: DB Queries over Encrypted strings ? or how ?
hmm, interesting....
So, as for transfering : SSL is already crypting transfered data ..enough you think ?
no need for an extra LC encryption method on top of it then....
So, as for transfering : SSL is already crypting transfered data ..enough you think ?
no need for an extra LC encryption method on top of it then....
-
- VIP Livecode Opensource Backer
- Posts: 9857
- Joined: Sat Apr 08, 2006 7:05 am
- Location: Los Angeles
- Contact:
Re: DB Queries over Encrypted strings ? or how ?
SSL is good enough for banking and medical insurance, it should be okay for most common needs.
If it enough? Is anything enough?
If it enough? Is anything enough?
Richard Gaskin
LiveCode development, training, and consulting services: Fourth World Systems
LiveCode Group on Facebook
LiveCode Group on LinkedIn
LiveCode development, training, and consulting services: Fourth World Systems
LiveCode Group on Facebook
LiveCode Group on LinkedIn
Re: DB Queries over Encrypted strings ? or how ?
hmm..
...enough of Covid crisis now !
...enough of Covid crisis now !
-
- VIP Livecode Opensource Backer
- Posts: 9857
- Joined: Sat Apr 08, 2006 7:05 am
- Location: Los Angeles
- Contact:
Re: DB Queries over Encrypted strings ? or how ?
Richard Gaskin
LiveCode development, training, and consulting services: Fourth World Systems
LiveCode Group on Facebook
LiveCode Group on LinkedIn
LiveCode development, training, and consulting services: Fourth World Systems
LiveCode Group on Facebook
LiveCode Group on LinkedIn