Re: Advanced security questions
Posted: Wed Jan 07, 2009 6:10 pm
Or just switch to PostgreSQL.
A community of PHP developers offering assistance, advice, discussion, and friendship.
http://forums.devnetwork.net/
What is the advantage there? Can it create full-text indexes for encrypted columns, without exposing the data?volomike wrote:Or just switch to PostgreSQL.
Full-text indices do leak information about the document. There is no (to my knowledge) support for FT indexing of encrypted text, but any alternative solution you may come to will still suffer from this (inherent to the indexing process) information leakage. Be sure that you know how to deal with it - limit the access to the search functionality only to the document owner, create "personal" search indices which are also encrypted with the owner key, etc.Can it create full-text indexes for encrypted columns, without exposing the data?
This sounds like a great solution. I was looking at some of the tools I have been pointed to for maintaining my own indexes, and I'm sure I could come up with a way to create and maintain indexes for my users, then serialize and store their personal index in the database (encrypted of course), allowing me to offer fast search without breaking security.Mordred wrote:...create "personal" search indices which are also encrypted with the owner key