Quick Links

Re: Where do you store key for encryption

From:	David Wall <d(dot)wall(at)computer(dot)org>
To:	Naoko Reeves <naoko(at)lawlogix(dot)com>
Cc:	Merlin Moncure <mmoncure(at)gmail(dot)com>, pgsql-general(at)postgresql(dot)org
Subject:	Re: Where do you store key for encryption
Date:	2009-11-18 04:23:26
Message-ID:	4B0376BE.5030404@computer.org
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

In our open-esignforms project we use a layered approach for keys in
which we have a boot key for the application that requires dual
passwords which we then combine into a single password for PBE
encryption of the boot key. We then have session keys that are
encrypted with the boot key, and the session keys are used to encrypt
one-up keys for encrypted blobs.

In your case, you could encrypt your key using PBE assuming you have a
way to provide the password to unlock it. This would allow you to
protect the key with a password, which is the most basic way to go if
you don't have a keystore to use.

David

In response to

Re: Where do you store key for encryption at 2009-11-18 04:00:32 from Naoko Reeves

Responses

Re: Where do you store key for encryption at 2009-11-29 02:50:32 from Bruce Momjian

Browse pgsql-general by date

	From	Date	Subject
Next Message	Pavel Stehule	2009-11-18 07:36:47	Re: cast record to array in plpgsql
Previous Message	David Fetter	2009-11-18 04:16:36	Re: passing parameters to multiple statements