| From: | "Jordi Molina" <warp3r(at)gmail(dot)com> |
|---|---|
| To: | "Alvaro Herrera" <alvherre(at)alvh(dot)no-ip(dot)org> |
| Cc: | Juan Martínez <jeugenio(at)umcervantes(dot)cl>, "lista postrges" <pgsql-es-ayuda(at)postgresql(dot)org> |
| Subject: | Re: [Fwd: Re: CLAVES EN POSTGRES] |
| Date: | 2008-10-01 13:59:48 |
| Message-ID: | 647a40580810010659w2ab94796ucffae153d45b289e@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-es-ayuda |
2008/10/1 Alvaro Herrera <alvherre(at)alvh(dot)no-ip(dot)org>:
>
> En todo caso lo único que se me ocurre en este momento es que cualquier
> sistema criptográfico diseñado por aficionados está condenado a fallar
> en cuanto un experto le echa una mirada.
Hasta Microsoft opina eso
(http://msdn.microsoft.com/en-us/library/aa302420.aspx):
<quote>
Web applications frequently use cryptography to secure data in
persistent stores or as it is transmitted across networks. The
following practices improve your Web application's security when you
use cryptography:
* Do not develop your own cryptography.
* Keep unencrypted data close to the algorithm.
* Use the correct algorithm and correct key size.
* Secure your encryption keys.
</quote>
--
Jordi Molina Casas (warp3r)
mail: warp3r(at)gmail(dot)com 4BC8 8150 7B1A FC24 FBAD 7B07 FE90 F300 4F36 3BF7
mail: warp3r(at)2shifted(dot)com 2F91 EF95 229E FC31 18C0 05C3 B320 22DA 8C03 F33E
www: www.warp3r.com (personal blog) sysadmin.warp3r.com (sysadmin related site)
openid: https://openid.warp3r.com/?user=warp3r
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alvaro Herrera | 2008-10-01 14:01:33 | Re: [Fwd: Re: CLAVES EN POSTGRES] |
| Previous Message | Alvaro Herrera | 2008-10-01 13:55:19 | Re: [Fwd: Re: CLAVES EN POSTGRES] |