| From: | "Naoko Reeves" <naoko(at)lawlogix(dot)com> |
|---|---|
| To: | "Merlin Moncure" <mmoncure(at)gmail(dot)com> |
| Cc: | <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: Fast Search on Encrypted Feild |
| Date: | 2009-11-14 22:00:11 |
| Message-ID: | 076DC33A3D38CE4BBC64D35DDD9DE70C09886B1C@mse4be2.mse4.exchange.ms |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Merlin,
Thank you for your quick response. I see... our security requirements are:
We are encrypting PII information within our DB and because of the sensitive nature of our data, we must balancing both performance and security to meet our client requirements.
Our clients are mainly lawyers and handles clients case (government, healthcare, education).
If you could provide me any advice that would be great otherwise I understand that I have to go without wildcard search.
Naoko
> Would this be the solution for the fast encrypted field search or does this
> raise the security issue?
You are storing the unencrypted phone number in the index...can't do
that. As I see it, any solution that needs to support 'LIKE' (or
anything other than equality case) is going to be problematic because
it has to expose details of the encrypted data to work. It may be
possible to rig something...how high are your security requirements?
merlin
| From | Date | Subject | |
|---|---|---|---|
| Next Message | John R Pierce | 2009-11-14 22:08:23 | Re: Fast Search on Encrypted Feild |
| Previous Message | Merlin Moncure | 2009-11-14 21:39:54 | Re: Fast Search on Encrypted Feild |