David Wall wrote:
> In our open-esignforms project we use a layered approach for keys in
> which we have a boot key for the application that requires dual
> passwords which we then combine into a single password for PBE
> encryption of the boot key. We then have session keys that are
> encrypt
In our open-esignforms project we use a layered approach for keys in
which we have a boot key for the application that requires dual
passwords which we then combine into a single password for PBE
encryption of the boot key. We then have session keys that are
encrypted with the boot key, and th
Got it.
Thank you very much for your advice.
-Original Message-
From: Merlin Moncure [mailto:mmonc...@gmail.com]
Sent: Tuesday, November 17, 2009 8:54 PM
To: Naoko Reeves
Cc: pgsql-general@postgresql.org
Subject: Re: [GENERAL] Where do you store key for encryption
On Tue, Nov 17, 2009
On Tue, Nov 17, 2009 at 10:12 PM, Naoko Reeves wrote:
> Hi,
>
> We have web application and encrypt PII columns. We use encrypt/decrypt
> function for this.
>
> Currently we hard coded the key in postgresql function which I am not sure
> of it.
>
> I did google it and people suggest that it needed
Hi,
We have web application and encrypt PII columns. We use encrypt/decrypt
function for this.
Currently we hard coded the key in postgresql function which I am not
sure of it.
I did google it and people suggest that it needed to be stored in
physically isolated location (storing decryption key